GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
21
Go
2,003
Maven
5,000+
npm
3,714
NuGet
661
pip
3,387
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
278 advisories
Filter by severity
Adobe Character Animator version 4.4 (and earlier versions) are affected by an out-of-bounds read...
Low
Unreviewed
CVE-2021-40769
was published
Mar 17, 2022
Adobe Character Animator version 4.4 (and earlier versions) are affected by an out-of-bounds read...
Low
Unreviewed
CVE-2021-40766
was published
Mar 17, 2022
Improper boundary check in media.extractor library prior to SMR Apr-2022 Release 1 allows...
Low
Unreviewed
CVE-2022-27832
was published
Apr 12, 2022
Bootloader contains a vulnerability in the NV3P server where any user with physical access...
Low
Unreviewed
CVE-2021-1111
was published
May 24, 2022
In f2fs_xattr_generic_list of xattr.c, there is a possible out of bounds read due to a missing...
Low
Unreviewed
CVE-2020-0067
was published
May 24, 2022
An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0...
Low
Unreviewed
CVE-2022-35904
was published
Jul 16, 2022
An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0...
Low
Unreviewed
CVE-2022-35901
was published
Jul 16, 2022
An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0...
Low
Unreviewed
CVE-2022-35906
was published
Jul 16, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected...
Low
Unreviewed
CVE-2022-34873
was published
Jul 19, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected...
Low
Unreviewed
CVE-2022-34874
was published
Jul 19, 2022
An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0...
Low
Unreviewed
CVE-2022-35902
was published
Jul 16, 2022
An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0...
Low
Unreviewed
CVE-2022-35903
was published
Jul 16, 2022
An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0...
Low
Unreviewed
CVE-2022-35905
was published
Jul 16, 2022
An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0...
Low
Unreviewed
CVE-2022-35900
was published
Jul 16, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected...
Low
Unreviewed
CVE-2022-34875
was published
Jul 19, 2022
In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a...
Low
Unreviewed
CVE-2020-0093
was published
May 24, 2022
Inkscape 0.19 is vulnerable to an out-of-bounds read, which may allow an attacker to have access...
Low
Unreviewed
CVE-2021-42700
was published
May 19, 2022
The cli_feat_read_cb() function in src/gatt-database.c does not perform bounds checks on the ...
Low
Unreviewed
CVE-2021-3588
was published
May 24, 2022
An issue was discovered in OpenSC through 0.19.0 and 0.20.x through 0.20.0-rc3. libopensc/card...
Low
Unreviewed
CVE-2019-19479
was published
May 24, 2022
readelf in ToaruOS 2.0.1 has some arbitrary address read vulnerabilities when parsing a crafted...
Low
Unreviewed
CVE-2022-38934
was published
Sep 29, 2022
In findParam of HevcUtils.cpp there is a possible out of bounds read due to a missing bounds...
Low
Unreviewed
CVE-2022-20528
was published
Dec 20, 2022
Bromium client version 4.0.3.2060 and prior to 4.1.7 Update 1 has an out of bound read results in...
Low
Unreviewed
CVE-2019-18567
was published
May 24, 2022
An information disclosure vulnerability exists in the way that the Windows Graphics Device...
Low
Unreviewed
CVE-2020-0744
was published
May 24, 2022
In l2c_link_process_num_completed_pkts of l2c_link.cc, there is a possible out of bounds read due...
Low
Unreviewed
CVE-2020-0055
was published
May 24, 2022
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core)....
Low
Unreviewed
CVE-2020-2748
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API