GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,003
Composer 4,785
Erlang 36
GitHub Actions 29
Go 2,367
Maven 5,679
npm 3,986
NuGet 720
pip 3,778
Pub 12
RubyGems 926
Rust 981
Swift 38

Unreviewed advisories

All unreviewed 260,912

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,408 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

DENX U-Boot through 2018.09-rc1 has a remotely exploitable buffer overflow via a malicious TFTP... Critical Unreviewed

CVE-2018-18439 was published May 14, 2022

Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable memory corruption... Critical Unreviewed

CVE-2017-2999 was published May 14, 2022

Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X... Critical Unreviewed

CVE-2016-4240 was published May 14, 2022

Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X... Critical Unreviewed

CVE-2016-4235 was published May 14, 2022

Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X... Critical Unreviewed

CVE-2016-4239 was published May 14, 2022

Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X... Critical Unreviewed

CVE-2016-4246 was published May 14, 2022

Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X... Critical Unreviewed

CVE-2016-4244 was published May 14, 2022

Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X... Critical Unreviewed

CVE-2016-4245 was published May 14, 2022

Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X... Critical Unreviewed

CVE-2016-4242 was published May 14, 2022

In Signiant Manager+Agents before 13.5, the implementation of the set command has a Buffer Overflow. Critical Unreviewed

CVE-2019-8996 was published May 14, 2022

Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and... Critical Unreviewed

CVE-2016-0981 was published May 17, 2022

In gatt_process_notification of gatt_cl.cc, there is a possible out of bounds write due to an... Critical Unreviewed

CVE-2021-39708 was published Mar 17, 2022

An issue was discovered in FIS GT.M through V7.0-000 (related to the YottaDB code base). Using... Critical Unreviewed

CVE-2021-44496 was published Apr 16, 2022

The pcre_compile2 function in pcre_compile.c in PCRE 8.38 mishandles the /((?:F?+(?:^(?(R)a+\")... Critical Unreviewed

CVE-2016-1283 was published May 13, 2022

An exploitable stack based buffer overflow vulnerability exists in the GNOME libsoup 2.58. A... Critical Unreviewed

CVE-2017-2885 was published May 13, 2022

An exploitable stack buffer overflow vulnerability exists in the MQTT packet parsing... Critical Unreviewed

CVE-2017-2894 was published May 13, 2022

Wind River VxWorks 6.7 though 6.9 and vx7 has a Buffer Overflow in the TCP component (issue 3 of... Critical Unreviewed

CVE-2019-12261 was published May 24, 2022

Adobe Flash Player before 18.0.0.375 and 19.x through 23.x before 23.0.0.162 on Windows and OS X... Critical Unreviewed

CVE-2016-4276 was published May 14, 2022

Adobe Flash Player before 18.0.0.375 and 19.x through 23.x before 23.0.0.162 on Windows and OS X... Critical Unreviewed

CVE-2016-6922 was published May 14, 2022

Adobe Flash Player before 18.0.0.375 and 19.x through 23.x before 23.0.0.162 on Windows and OS X... Critical Unreviewed

CVE-2016-4274 was published May 14, 2022

Wind River VxWorks 6.9 and vx7 has a Buffer Overflow in the TCP component (issue 2 of 4). This is... Critical Unreviewed

CVE-2019-12260 was published May 24, 2022

Wind River VxWorks 6.5 through 6.9.3 has a Buffer Overflow in the TCP component (issue 1 of 4).... Critical Unreviewed

CVE-2019-12255 was published May 24, 2022

Exim 4 before 4.94.2 has Improper Restriction of Write Operations within the Bounds of a Memory... Critical Unreviewed

CVE-2020-28022 was published May 24, 2022

a function called 'nla_parse', do not check the len of para, it will check nla_type (which can be... Critical Unreviewed

CVE-2022-20385 was published Sep 14, 2022

There is a Memory Buffer Improper Operation Limit Vulnerability in Huawei Smartphone.Successful... Critical Unreviewed

CVE-2021-22390 was published May 24, 2022

Previous 1 2 3 4 5 … 56 57 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,408 advisories