Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

258 advisories

Loading
sd_wp_addr in hw/sd/sd.c in QEMU 4.2.0 uses an unvalidated address, which leads to an out-of... Low Unreviewed
CVE-2020-13253 was published May 24, 2022
A buffer over-read flaw was found in RH kernel versions before 5.0 in crypto_authenc_extractkeys... Low Unreviewed
CVE-2020-10769 was published May 24, 2022
An out of bounds read was discovered in systemd-journald in the way it parses log messages that... Low Unreviewed
CVE-2018-16866 was published May 13, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected... Low Unreviewed
CVE-2022-37376 was published Mar 29, 2023
An out of bounds read vulnerability exists in the way OpenImageIO version v2.3.19.0 processes... Low Unreviewed
CVE-2022-41977 was published Dec 23, 2022
This vulnerability allows local attackers to disclose sensitive information on affected... Low Unreviewed
CVE-2021-35005 was published Jan 25, 2022
XMP Toolkit SDK versions 2020.1 (and earlier) are affected by an out-of-bounds read vulnerability... Low Unreviewed
CVE-2021-36053 was published May 24, 2022
XMP Toolkit SDK versions 2020.1 (and earlier) are affected by an out-of-bounds read vulnerability... Low Unreviewed
CVE-2021-36045 was published May 24, 2022
An issue was discovered in FreeRDP before 2.1.1. An out-of-bounds (OOB) read vulnerability has... Low Unreviewed
CVE-2020-13397 was published May 24, 2022
An issue was discovered in FreeRDP before 2.1.1. An out-of-bounds (OOB) read vulnerability has... Low Unreviewed
CVE-2020-13396 was published May 24, 2022
Default functions in VolatileMemory trait lack bounds checks, potentially leading to out-of-bounds memory accesses Low
CVE-2023-41051 was published for vm-memory (Rust) Sep 4, 2023
Manishearth
Out-of-bounds read in the Intel(R) Arc(TM) & Iris(R) Xe Graphics - WHQL - Windows drivers before... Low Unreviewed
CVE-2023-28404 was published Nov 14, 2023
Adobe Acrobat Reader versions 23.006.20360 (and earlier) and 20.005.30524 (and earlier) are... Low Unreviewed
CVE-2023-44340 was published Nov 16, 2023
Adobe Acrobat Reader versions 23.006.20360 (and earlier) and 20.005.30524 (and earlier) are... Low Unreviewed
CVE-2023-44357 was published Nov 16, 2023
Adobe Acrobat Reader versions 23.006.20360 (and earlier) and 20.005.30524 (and earlier) are... Low Unreviewed
CVE-2023-44358 was published Nov 16, 2023
Adobe Acrobat Reader versions 23.006.20360 (and earlier) and 20.005.30524 (and earlier) are... Low Unreviewed
CVE-2023-44356 was published Nov 16, 2023
Adobe Acrobat Reader versions 23.006.20360 (and earlier) and 20.005.30524 (and earlier) are... Low Unreviewed
CVE-2023-44348 was published Nov 16, 2023
Adobe Acrobat Reader versions 23.006.20360 (and earlier) and 20.005.30524 (and earlier) are... Low Unreviewed
CVE-2023-44360 was published Nov 16, 2023
Adobe After Effects version 24.0.2 (and earlier) and 23.6 (and earlier) are affected by an out-of... Low Unreviewed
CVE-2023-47071 was published Nov 17, 2023
Some Honor products are affected by out of bounds read vulnerability, successful exploitation... Low Unreviewed
CVE-2023-51432 was published Dec 29, 2023
in OpenHarmony v3.2.4 and prior versions allow a local attacker causes information leak through... Low Unreviewed
CVE-2023-43756 was published Feb 2, 2024
in OpenHarmony v3.2.4 and prior versions allow a local attacker causes information leak through... Low Unreviewed
CVE-2023-49118 was published Feb 2, 2024
OpenZeppelin Contracts base64 encoding may read from potentially dirty memory Low
CVE-2024-27094 was published for @openzeppelin/contracts (npm) Feb 29, 2024
rholterhus
in OpenHarmony v3.2.4 and prior versions allow a local attacker cause apps crash through type... Low Unreviewed
CVE-2023-49602 was published Mar 4, 2024
in OpenHarmony v3.2.4 and prior versions allow a local attacker cause information leak through... Low Unreviewed
CVE-2023-25176 was published Mar 4, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database