Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

574 advisories

Loading
Adobe After Effects versions 22.2 (and earlier) and 18.4.4 (and earlier) are affected by an Heap... High Unreviewed
CVE-2022-24096 was published Mar 12, 2022
Heap buffer overflow in libr/bin/format/mach0/mach0.c in GitHub repository radareorg/radare2... High Unreviewed
CVE-2022-1240 was published Apr 7, 2022
The affected product is vulnerable to a heap-based buffer overflow, which may lead to code... High Unreviewed
CVE-2022-21214 was published Apr 13, 2022
An Uncontrolled Memory Allocation vulnerability leading to a Heap-based Buffer Overflow in the... High Unreviewed
CVE-2022-22188 was published Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exist in the TIFF parser functionality of Accusoft... High Unreviewed
CVE-2021-21945 was published Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exist in the TIFF parser functionality of Accusoft... High Unreviewed
CVE-2021-21944 was published Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exists in the JPEG-JFIF lossless Huffman image... High Unreviewed
CVE-2021-21946 was published Apr 15, 2022
vim is vulnerable to Heap-based Buffer Overflow High Unreviewed
CVE-2021-3903 was published May 24, 2022
Acrobat Reader DC versions versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier)... High Unreviewed
CVE-2021-21017 was published May 24, 2022
Adobe InCopy versions 17.2 (and earlier) and 16.4.1 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-30650 was published Jun 17, 2022
Adobe InDesign versions 17.2.1 (and earlier) and 16.4.1 (and earlier) are affected by a Heap... High Unreviewed
CVE-2022-30661 was published Jun 17, 2022
Heap-based Buffer Overflow in Conda vim prior to 8.2. High Unreviewed
CVE-2022-0392 was published Feb 15, 2022
Adobe InCopy versions 17.2 (and earlier) and 16.4.1 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-30654 was published Jun 17, 2022
In multiple CODESYS products, a low privileged remote attacker may craft a request, which may... High Unreviewed
CVE-2022-32137 was published Jun 25, 2022
Adobe InCopy versions 17.2 (and earlier) and 16.4.1 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-34249 was published Jul 16, 2022
Adobe InCopy versions 17.2 (and earlier) and 16.4.1 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-34250 was published Jul 16, 2022
Adobe InDesign versions 17.2.1 (and earlier) and 16.4.1 (and earlier) are affected by a Heap... High Unreviewed
CVE-2022-34246 was published Jul 16, 2022
Adobe Character Animator version 4.4.7 (and earlier) and 22.4 (and earlier) are affected by a... High Unreviewed
CVE-2022-34241 was published Jul 16, 2022
vim is vulnerable to Heap-based Buffer Overflow High Unreviewed
CVE-2021-3770 was published May 24, 2022
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0102. High Unreviewed
CVE-2022-2580 was published Aug 2, 2022
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0101. High Unreviewed
CVE-2022-2571 was published Aug 2, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-40660 was published Sep 16, 2022
Adobe Bridge version 12.0.2 (and earlier) and 11.1.3 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-35706 was published Sep 20, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed
CVE-2022-40661 was published Sep 16, 2022
Adobe Bridge version 12.0.2 (and earlier) and 11.1.3 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-35708 was published Sep 20, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database