Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,266
Erlang
31
GitHub Actions
21
Go
2,035
Maven
5,000+
npm
3,732
NuGet
662
pip
3,413
Pub
12
RubyGems
891
Rust
865
Swift
36
Unreviewed advisories
All unreviewed
5,000+

204 advisories

Loading
There is an integer underflow vulnerability in the atcmdserver module. Successful exploitation of... High Unreviewed
CVE-2021-40054 was published Mar 11, 2022
Integer underflow in ANGLE in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to... High Unreviewed
CVE-2021-4066 was published Dec 24, 2021
A PV guest could DoS Xen while unmapping a grant To address XSA-380, reference counting was... Moderate Unreviewed
CVE-2022-23034 was published Jan 26, 2022
An integer underflow in the DDS loader of Blender leads to an out-of-bounds read, possibly... Moderate Unreviewed
CVE-2022-0544 was published Feb 25, 2022
In preloader (usb), there is a possible out of bounds write due to a integer underflow. This... Moderate Unreviewed
CVE-2022-20073 was published Apr 12, 2022
An issue was discovered in FIS GT.M through V7.0-000 (related to the YottaDB code base). Using... High Unreviewed
CVE-2021-44509 was published Apr 16, 2022
An issue was discovered in YottaDB through r1.32 and V7.0-000. Using crafted input, attackers can... High Unreviewed
CVE-2021-44489 was published Apr 16, 2022
Missing validation causes denial of service via `Conv3DBackpropFilterV2` Moderate
CVE-2022-29204 was published for tensorflow (pip) May 24, 2022
Integer Underflow vulnerability in Mitsubishi Electric GX Works2 versions 1.606G and prior,... Moderate Unreviewed
CVE-2021-20607 was published Dec 18, 2021
Loading a bgzip block can write out of bounds if size overflows. Critical
CVE-2021-28027 was published for bam (Rust) May 24, 2022
NVIDIA Linux kernel distributions contain a vulnerability in FuSa Capture (VI/ISP), where integer... High Unreviewed
CVE-2021-1108 was published May 24, 2022
A memory corruption vulnerability exists in the XML-parsing CreateLabelOrAttrib functionality of... Critical Unreviewed
CVE-2021-21811 was published May 24, 2022
An integer underflow in fuse_lib_readdir enables arbitrary memory read operations in NTFS-3G... Moderate Unreviewed
CVE-2022-30787 was published May 27, 2022
ZAngband zangband-data 2.7.5 is affected by an integer underflow vulnerability in src/tk/plat.c... Critical Unreviewed
CVE-2021-40589 was published Jun 9, 2022
An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR... Moderate Unreviewed
CVE-2021-26260 was published May 24, 2022
The Rating by BestWebSoft WordPress plugin through 1.5 does not validate the submitted rating,... Moderate Unreviewed
CVE-2021-25121 was published Jun 21, 2022
Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and... High Unreviewed
CVE-2017-3034 was published May 17, 2022
In all Android releases from CAF using the Linux kernel, an integer underflow vulnerability... High Unreviewed
CVE-2017-7367 was published May 17, 2022
The Stars Rating WordPress plugin before 3.5.1 does not validate the submitted rating, allowing... High Unreviewed
CVE-2021-24893 was published Jan 4, 2022
Integer overflow in drivers/char/diag/diag_dci.c in the Qualcomm components in Android before... High Unreviewed
CVE-2014-9883 was published May 17, 2022
An issue was discovered in Suricata 4.1.x before 4.1.4. If the input of the function... Critical Unreviewed
CVE-2019-10053 was published May 24, 2022
A vulnerability in the web server of Cisco Integrated Management Controller (IMC) could allow an... Moderate Unreviewed
CVE-2019-1628 was published May 24, 2022
An Integer Underflow in MP4_EIA608_Convert() in modules/demux/mp4/mp4.c in VideoLAN VLC media... High Unreviewed
CVE-2019-13602 was published May 24, 2022
An Integer underflow in VLC Media Player versions < 3.0.7 leads to an out-of-band read. High Unreviewed
CVE-2019-5459 was published May 24, 2022
An issue was discovered in The Sleuth Kit (TSK) 4.6.6. There is an off-by-one overwrite due to an... Critical Unreviewed
CVE-2019-14532 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database