GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
9,701 advisories
Filter by severity
Improper validation of memory region in Hypervisor can lead to incorrect region mapping in...
High
Unreviewed
CVE-2021-30285
was published
Jan 14, 2022
Possible heap overflow due to lack of index validation before allocating and writing to heap...
High
Unreviewed
CVE-2021-30311
was published
Jan 14, 2022
AEM's Cloud Service offering, as well as version 6.5.10.0 (and below) are affected by a...
Moderate
Unreviewed
CVE-2021-43762
was published
Jan 14, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2021-34994
was published
Jan 14, 2022
A vulnerability has been identified in SIPROTEC 5 6MD85 devices (CPU variant CP300) (All versions...
High
Unreviewed
CVE-2021-41769
was published
Jan 12, 2022
Serv-U web login screen was allowing characters that were not sanitized by the authentication...
Critical
Unreviewed
CVE-2021-35247
was published
Jan 11, 2022
IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 could disclose sensitive information due to...
High
Unreviewed
CVE-2021-38957
was published
Jan 11, 2022
Improper sanitization of incoming intent in Dressroom prior to SMR Jan-2022 Release 1 allows...
High
Unreviewed
CVE-2022-22264
was published
Jan 11, 2022
A missing input validation before memory copy in TIMA trustlet prior to SMR Jan-2022 Release 1...
Moderate
Unreviewed
CVE-2022-22271
was published
Jan 11, 2022
In wifi driver, there is a possible system crash due to a missing validation check. This could...
Moderate
Unreviewed
CVE-2021-41789
was published
Jan 5, 2022
In vow driver, there is a possible memory corruption due to improper input validation. This could...
Moderate
Unreviewed
CVE-2022-20014
was published
Jan 5, 2022
Improper validation of a socket state when socket events are being sent to clients can lead to...
High
Unreviewed
CVE-2021-30262
was published
Jan 4, 2022
Improper input validation in TrustZone memory transfer interface can lead to information...
Moderate
Unreviewed
CVE-2021-30278
was published
Jan 4, 2022
The programming function of Shockwall system has an improper input validation vulnerability. An...
Low
Unreviewed
CVE-2021-45916
was published
Jan 4, 2022
The Stars Rating WordPress plugin before 3.5.1 does not validate the submitted rating, allowing...
High
Unreviewed
CVE-2021-24893
was published
Jan 4, 2022
PCManager has a Weaknesses Introduced During Design vulnerability .Successful exploitation of...
Critical
Unreviewed
CVE-2021-37116
was published
Jan 4, 2022
ZTE BigVideo analysis product has an input verification vulnerability. Due to the inconsistency...
High
Unreviewed
CVE-2021-21751
was published
Dec 28, 2021
Patient Information Center iX (PIC iX) Versions C.02 and C.03 receives input or data, but does...
Moderate
Unreviewed
CVE-2021-43548
was published
Dec 28, 2021
MediaTek microchips, as used in NETGEAR devices through 2021-12-13 and other devices, mishandle...
High
Unreviewed
CVE-2021-41788
was published
Dec 27, 2021
Inappropriate implementation in input in Google Chrome prior to 96.0.4664.45 allowed an attacker...
High
Unreviewed
CVE-2021-38015
was published
Dec 24, 2021
Insufficient data validation in loader in Google Chrome prior to 96.0.4664.93 allowed a remote...
Moderate
Unreviewed
CVE-2021-4059
was published
Dec 24, 2021
Insufficient data validation in new tab page in Google Chrome prior to 96.0.4664.93 allowed a...
Moderate
Unreviewed
CVE-2021-4068
was published
Dec 24, 2021
In Open5GS 2.4.0, a crafted packet from UE can crash SGW-U/UPF.
High
Unreviewed
CVE-2021-45462
was published
Dec 24, 2021
Certain Starcharge products are affected by Improper Input Validation. The affected products...
High
Unreviewed
CVE-2021-45419
was published
Dec 23, 2021
An Improper Input Validation Vulnerability exists when reading a BMP file using Open Design...
High
Unreviewed
CVE-2021-44422
was published
Dec 22, 2021
ProTip!
Advisories are also available from the
GraphQL API