Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,631
NuGet
638
pip
3,246
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

4,131 advisories

Loading
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before... Critical Unreviewed
CVE-2016-4173 was published May 14, 2022
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before... Critical Unreviewed
CVE-2016-4174 was published May 14, 2022
Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable use after free... Critical Unreviewed
CVE-2017-3003 was published May 14, 2022
Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable use after free... Critical Unreviewed
CVE-2017-3001 was published May 14, 2022
An issue was discovered in the Arm Mali GPU Kernel Driver. There is a use-after-free. A non... High Unreviewed
CVE-2022-46891 was published Jan 17, 2023
Use After Free in GitHub repository gpac/gpac prior to 2.3.0-DEV. High Unreviewed
CVE-2023-0358 was published Jan 18, 2023
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before... High Unreviewed
CVE-2016-4222 was published May 14, 2022
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before... Critical Unreviewed
CVE-2016-7020 was published May 14, 2022
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before... Critical Unreviewed
CVE-2016-4226 was published May 14, 2022
Use-after-free vulnerability in the Transform object implementation in Adobe Flash Player before... High Unreviewed
CVE-2016-1016 was published May 14, 2022
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20... Critical Unreviewed
CVE-2016-0983 was published May 17, 2022
Adobe Flash Player versions 29.0.0.113 and earlier have an exploitable Use-After-Free... High Unreviewed
CVE-2018-4932 was published May 14, 2022
Use after free vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One (v4... High Unreviewed
CVE-2022-25230 was published Mar 11, 2022
Use after free vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One (v4... High Unreviewed
CVE-2022-25325 was published Mar 11, 2022
A use after free vulnerability was discovered in PDFTron SDK version 9.2.0. A crafted PDF can... High Unreviewed
CVE-2022-24960 was published Mar 11, 2022
Use after free in garbage collector and finalizer of lgc.c in Lua interpreter 5.4.0~5.4.3 allows... Moderate Unreviewed
CVE-2021-44964 was published Mar 15, 2022
GPAC 1.0.1 is affected by Use After Free through MP4Box. Moderate Unreviewed
CVE-2022-24576 was published Mar 15, 2022
In TBD of TBD, there is a possible user after free vulnerability due to a race condition. This... Moderate Unreviewed
CVE-2021-39712 was published Mar 17, 2022
In aio_poll_complete_work of aio.c, there is a possible memory corruption due to a use after free... High Unreviewed
CVE-2021-39698 was published Mar 17, 2022
Use after free in screen capture in Google Chrome on ChromeOS prior to 96.0.4664.93 allowed a... High Unreviewed
CVE-2021-4064 was published Dec 24, 2021
Use after free in window manager in Google Chrome on ChromeOS prior to 96.0.4664.93 allowed a... High Unreviewed
CVE-2021-4067 was published Dec 24, 2021
Use after free in UI in Google Chrome on Linux prior to 96.0.4664.93 allowed a remote attacker to... High Unreviewed
CVE-2021-4053 was published Dec 24, 2021
The PowerVR GPU driver allows unprivileged apps to allocated pinned memory, unpin it (which makes... Critical Unreviewed
CVE-2022-20122 was published Aug 25, 2022
The PowerVR GPU driver allows unprivileged apps to allocated pinned memory, unpin it (which makes... Critical Unreviewed
CVE-2021-39815 was published Aug 25, 2022
Use after free in file API in Google Chrome prior to 96.0.4664.93 allowed a remote attacker who... High Unreviewed
CVE-2021-4057 was published Dec 24, 2021
ProTip! Advisories are also available from the GraphQL API