Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,344
Erlang
31
GitHub Actions
22
Go
2,112
Maven
5,000+
npm
3,767
NuGet
680
pip
3,453
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,382 advisories

Loading
snakeYAML before 1.32 vulnerable to Denial of Service due to Out-of-bounds Write Moderate
CVE-2022-38752 was published for org.yaml:snakeyaml (Maven) Sep 6, 2022
mprins
CNCSoft: All versions prior to 1.01.32 does not properly sanitize input while processing a... High Unreviewed
CVE-2022-1405 was published Sep 1, 2022
Alpha7 PC Loader (All versions) is vulnerable to a stack-based buffer overflow while processing a... High Unreviewed
CVE-2022-1888 was published Sep 1, 2022
A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main() function. This flaw allows... Moderate Unreviewed
CVE-2022-1355 was published Sep 1, 2022
Measuresoft ScadaPro Server (All Versions) allows use after free while processing a specific... High Unreviewed
CVE-2022-2896 was published Sep 1, 2022
Measuresoft ScadaPro Server (All Versions) uses unmaintained ActiveX controls. These controls may... High Unreviewed
CVE-2022-2895 was published Sep 1, 2022
Jsonxx or Json++ is a JSON parser, writer and reader written in C++. In affected versions of... High Unreviewed
CVE-2022-23460 was published Aug 20, 2022
A stack-based buffer overflow vulnerability exists in the confsrv confctl_set_app_language... Critical Unreviewed
CVE-2022-23103 was published Aug 6, 2022
A stack-based buffer overflow vulnerability exists in the confsrv set_mf_rule functionality of... Critical Unreviewed
CVE-2022-23919 was published Aug 6, 2022
A stack-based buffer overflow vulnerability exists in the confsrv set_mf_rule functionality of... Critical Unreviewed
CVE-2022-23918 was published Aug 6, 2022
A stack-based buffer overflow vulnerability exists in the confsrv set_port_fwd_rule functionality... Critical Unreviewed
CVE-2022-23399 was published Aug 6, 2022
A stack-based buffer overflow vulnerability exists in the confers ucloud_add_node_new... High Unreviewed
CVE-2022-21201 was published Aug 6, 2022
A stack-based buffer overflow vulnerability exists in the confsrv ucloud_set_node_location... Critical Unreviewed
CVE-2022-26009 was published Aug 6, 2022
A stack-based buffer overflow vulnerability exists in the confsrv addTimeGroup functionality of... Critical Unreviewed
CVE-2022-25996 was published Aug 6, 2022
This vulnerability allows local attackers to escalate privileges on affected installations of... Moderate Unreviewed
CVE-2022-35867 was published Aug 4, 2022
Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0. High Unreviewed
CVE-2022-2304 was published Jul 6, 2022
A vulnerability was found in the Linux kernel's nft_set_desc_concat_parse() function .This flaw... Moderate Unreviewed
CVE-2022-2078 was published Jul 1, 2022
A vulnerability in the web-based management interface of Cisco Small Business RV110W, RV130,... Critical Unreviewed
CVE-2022-20825 was published Jun 16, 2022
In the code that verifies the file size in the ark library, it is possible to manipulate the... High Unreviewed
CVE-2021-26635 was published Jun 3, 2022
A buffer overflow vulnerability has been detected in the firewall function of the device... High Unreviewed
CVE-2022-1669 was published May 25, 2022
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to a... High Unreviewed
CVE-2021-33549 was published May 24, 2022
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to a stack... High Unreviewed
CVE-2021-33545 was published May 24, 2022
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to a... High Unreviewed
CVE-2021-33546 was published May 24, 2022
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to a stack... High Unreviewed
CVE-2021-33547 was published May 24, 2022
Dell iDRAC 9 prior to version 4.40.40.00 and iDRAC 8 prior to version 2.80.80.80 contain a Stack... High Unreviewed
CVE-2021-36301 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database