GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,988
Maven
5,000+
npm
3,704
NuGet
661
pip
3,332
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
61 advisories
Filter by severity
A remote, authenticated attacker can send a specific crafted HTTP or HTTPS requests causing a...
Moderate
Unreviewed
CVE-2022-22519
was published
Apr 8, 2022
tcpdump.org tcpdump 4.9.2 is affected by: CWE-126: Buffer Over-read. The impact is: May expose...
Moderate
Unreviewed
CVE-2019-1010220
was published
May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ...
Moderate
Unreviewed
CVE-2021-34322
was published
May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ...
Moderate
Unreviewed
CVE-2021-34325
was published
May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ...
Moderate
Unreviewed
CVE-2021-34321
was published
May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ...
Moderate
Unreviewed
CVE-2021-34320
was published
May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ...
Moderate
Unreviewed
CVE-2021-34308
was published
May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ...
Moderate
Unreviewed
CVE-2021-34302
was published
May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ...
Moderate
Unreviewed
CVE-2021-34304
was published
May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ...
Moderate
Unreviewed
CVE-2021-34303
was published
May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization ...
Moderate
Unreviewed
CVE-2021-34299
was published
May 24, 2022
Multiple CODESYS Products are prone to a buffer over read. A low privileged remote attacker may...
Moderate
Unreviewed
CVE-2022-32141
was published
Jun 25, 2022
A buffer over-read vulnerability was reported in the ThinkPadX13s BIOS LenovoSetupConfigDxe...
Moderate
Unreviewed
CVE-2022-4433
was published
Jan 5, 2023
A buffer over-read vulnerability was reported in the ThinkPadX13s BIOS...
Moderate
Unreviewed
CVE-2022-4435
was published
Jan 5, 2023
A buffer over-read vulnerability was reported in the ThinkPadX13s BIOS PersistenceConfigDxe...
Moderate
Unreviewed
CVE-2022-4432
was published
Jan 5, 2023
Information disclosure in Trusted Execution Environment due to buffer over-read while processing...
Moderate
Unreviewed
CVE-2022-33221
was published
Feb 12, 2023
Information disclosure due to buffer overread in Linux sensors
Moderate
Unreviewed
CVE-2022-33297
was published
Apr 13, 2023
Information disclosure due to buffer over-read in Trusted Execution Environment while QRKS report...
Moderate
Unreviewed
CVE-2022-33273
was published
May 2, 2023
iSCSI dissector crash in Wireshark 4.0.0 to 4.0.6 allows denial of service via packet injection...
Moderate
Unreviewed
CVE-2023-3649
was published
Jul 14, 2023
Buffer Over-read in GitHub repository gpac/gpac prior to 2.3-DEV.
Moderate
Unreviewed
CVE-2023-4758
was published
Sep 4, 2023
Information disclosure in Automotive multimedia due to buffer over-read.
Moderate
Unreviewed
CVE-2022-33220
was published
Sep 5, 2023
Transient DOS in Bluetooth HOST while passing descriptor to validate the blacklisted BT keyboard.
Moderate
Unreviewed
CVE-2023-21667
was published
Sep 5, 2023
Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming...
Moderate
Unreviewed
CVE-2023-28571
was published
Oct 3, 2023
A buffer over-read was reported in the LEMALLDriversConnectedEventHook module in some Lenovo...
Moderate
Unreviewed
CVE-2023-43574
was published
Nov 9, 2023
A buffer over-read was reported in the BiosExtensionLoader module in some Lenovo Desktop products...
Moderate
Unreviewed
CVE-2023-43572
was published
Nov 9, 2023
ProTip!
Advisories are also available from the
GraphQL API