GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,233
Erlang
31
GitHub Actions
20
Go
1,992
Maven
5,000+
npm
3,709
NuGet
661
pip
3,346
Pub
11
RubyGems
884
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
90 advisories
Filter by severity
The return value from `gfx::SourceSurfaceSkia::Map()` wasn't being verified which could have...
High
Unreviewed
CVE-2023-25733
was published
Jun 19, 2023
Unchecked Return Value in GitHub repository gpac/gpac prior to 2.2.2.
Moderate
Unreviewed
CVE-2023-3013
was published
May 31, 2023
In the Linux kernel before 5.16, tools/perf/util/expr.c lacks a check for the hashmap__new return...
High
Unreviewed
CVE-2023-23003
was published
Mar 1, 2023
HyperKit is a toolkit for embedding hypervisor capabilities in an application. In versions 0...
High
Unreviewed
CVE-2021-32845
was published
Feb 18, 2023
Insufficient check of preconditions could lead to Denial of Service conditions when calling...
High
Unreviewed
CVE-2022-43763
was published
Feb 8, 2023
A vulnerability, which was classified as problematic, has been found in vicamo NetworkManager....
Critical
Unreviewed
CVE-2014-125043
was published
Jan 5, 2023
An issue was discovered in the Linux kernel through 5.16-rc6. kfd_parse_subtype_iolink in drivers...
Moderate
Unreviewed
CVE-2022-3108
was published
Dec 14, 2022
A vulnerability was found in Axiomatic Bento4. It has been rated as problematic. Affected by this...
Moderate
Unreviewed
CVE-2022-3807
was published
Nov 2, 2022
An Unchecked Return Value to NULL Pointer Dereference vulnerability in Routing Protocol Daemon ...
Moderate
Unreviewed
CVE-2022-22233
was published
Oct 18, 2022
An Unchecked Return Value to NULL Pointer Dereference vulnerability in Packet Forwarding Engine ...
High
Unreviewed
CVE-2022-22231
was published
Oct 18, 2022
An issue was discovered in Samsung TizenRT through 3.0_GBM (and 3.1_PRE)....
High
Unreviewed
CVE-2022-40279
was published
Sep 30, 2022
An issue has been found in PBC through 2022-8-27. A SEGV issue detected in the function...
High
Unreviewed
CVE-2022-38936
was published
Sep 25, 2022
Dell BIOS versions contain an Unchecked Return Value vulnerability. A local authenticated...
Moderate
Unreviewed
CVE-2022-31225
was published
Sep 13, 2022
Dell BIOS versions contain an Unchecked Return Value vulnerability. A local authenticated...
Moderate
Unreviewed
CVE-2022-31220
was published
Sep 13, 2022
A flaw was found in Undertow. For an AJP 400 response, EAP 7 is improperly sending two response...
High
Unreviewed
CVE-2022-1319
was published
Sep 1, 2022
A flaw was found in the copying tool `nbdcopy` of libnbd. When performing multi-threaded copies...
High
Unreviewed
CVE-2022-0485
was published
Aug 29, 2022
A flaw was found in Python, specifically in the FTP (File Transfer Protocol) client library in...
Moderate
Unreviewed
CVE-2021-4189
was published
Aug 25, 2022
A flaw was found in glibc. The realpath() function can mistakenly return an unexpected value,...
High
Unreviewed
CVE-2021-3998
was published
Aug 25, 2022
An invalid return code in fuse_kern_mount enables intercepting of libfuse-lite protocol traffic...
Moderate
Unreviewed
CVE-2022-30783
was published
May 27, 2022
In the CODESYS V2 web server prior to V1.1.9.22 crafted web server requests can trigger a parser...
High
Unreviewed
CVE-2021-34585
was published
May 24, 2022
An Unchecked Return Value vulnerability in the authd (authentication daemon) of Juniper Networks...
Moderate
Unreviewed
CVE-2021-31366
was published
May 24, 2022
IBM Planning Analytics 2.0 could expose information that could be used to to create attacks by...
Moderate
Unreviewed
CVE-2021-29853
was published
May 24, 2022
adts_decode_extradata in libavformat/adtsenc.c in FFmpeg 4.4 does not check the init_get_bits...
Critical
Unreviewed
CVE-2021-38171
was published
May 24, 2022
IBM Planning Analytics Local 2.0 could allow a remote attacker to obtain sensitive information...
Moderate
Unreviewed
CVE-2021-29739
was published
May 24, 2022
libavcodec/dnxhddec.c in FFmpeg 4.4 does not check the return value of the init_vlc function, a...
Moderate
Unreviewed
CVE-2021-38114
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API