Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

876 advisories

Loading
DENX U-Boot through 2018.09-rc1 has a remotely exploitable buffer overflow via a malicious TFTP... Critical Unreviewed
CVE-2018-18439 was published May 14, 2022
In strongSwan before 5.9.5, a malicious responder can send an EAP-Success message too early... Critical Unreviewed
CVE-2021-45079 was published Feb 8, 2022
A Buffer Overflow vulnerabilitiy exists in TP-LINK WR-886N 20190826 2.3.8 in the /cloud_config... Critical Unreviewed
CVE-2021-44629 was published Mar 11, 2022
A Buffer Overflow vulnerability exists in TP-LINK WR-886N 20190826 2.3.8 in the /cloud_config... Critical Unreviewed
CVE-2021-44632 was published Mar 11, 2022
A Buffer Overflow vulnerabiltiy exists in TP-LINK WR-886N 20190826 2.3.8 in thee /cloud_config... Critical Unreviewed
CVE-2021-44628 was published Mar 11, 2022
A Buffer Overflow vulnerability exists in TP-LINK WR-886N 20190826 2.3.8 in the /cloud_config... Critical Unreviewed
CVE-2021-44622 was published Mar 11, 2022
A Buffer Overflow vulnerability exists in TP-LINK WR-886N 20190826 2.3.8 in /cloud_config... Critical Unreviewed
CVE-2021-44625 was published Mar 11, 2022
A Buffer Overflow vulnerability exists in TP-LINK WR-886N 20190826 2.3.8 in the /cloud_config... Critical Unreviewed
CVE-2021-44626 was published Mar 11, 2022
A Buffer Overflow vulnerability exists in TP-LINK WR-886N 20190826 2.3.8 in the /cloud_config... Critical Unreviewed
CVE-2021-44630 was published Mar 11, 2022
A Buffer Overflow vulnerability exists in TP-LINK WR-886N 20190826 2.3.8 in the /cloud_config... Critical Unreviewed
CVE-2021-44627 was published Mar 11, 2022
It was discovered that the SteelCentral AppInternals Dynamic Sampling Agent's (DSA) PluginServlet... Critical Unreviewed
CVE-2021-42854 was published Mar 11, 2022
It was discovered that the SteelCentral AppInternals Dynamic Sampling Agent's (DSA)... Critical Unreviewed
CVE-2021-42853 was published Mar 11, 2022
It was discovered that the SteelCentral AppInternals Dynamic Sampling Agent (DSA) has Remote Code... Critical Unreviewed
CVE-2021-42786 was published Mar 11, 2022
It was discovered that the SteelCentral AppInternals Dynamic Sampling Agent's (DSA)... Critical Unreviewed
CVE-2021-42787 was published Mar 11, 2022
The telnet_input_char function in opt/src/accel-pppd/cli/telnet.c suffers from a memory... Critical Unreviewed
CVE-2022-0982 was published Mar 17, 2022
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in... Critical Unreviewed
CVE-2022-22586 was published Mar 19, 2022
In Yokogawa WideField3 R1.01 - R4.03, a buffer overflow could be caused when a user loads a... Critical Unreviewed
CVE-2020-16232 was published Mar 19, 2022
A logic issue was addressed with improved state management. This issue is fixed in tvOS 15.4, iOS... Critical Unreviewed
CVE-2022-22632 was published Mar 19, 2022
The Online Admission System 1.0 allows an unauthenticated attacker to upload or transfer files of... Critical Unreviewed
CVE-2021-45835 was published Mar 19, 2022
A memory corruption issue was addressed with improved input validation. This issue is fixed in... Critical Unreviewed
CVE-2022-22587 was published Mar 19, 2022
VMware Carbon Black App Control (8.5.x prior to 8.5.14, 8.6.x prior to 8.6.6, 8.7.x prior to 8.7... Critical Unreviewed
CVE-2022-22951 was published Mar 24, 2022
A Remote Code Execution (RCE) vulnerability exists in Sourcecodester Attendance and Payroll... Critical Unreviewed
CVE-2021-44087 was published Mar 19, 2022
VMware Carbon Black App Control (8.5.x prior to 8.5.14, 8.6.x prior to 8.6.6, 8.7.x prior to 8.7... Critical Unreviewed
CVE-2022-22952 was published Mar 24, 2022
An Access Control vulnerability exists in SoroushPlus+ Messenger 1.0.30 in the Lock Screen... Critical Unreviewed
CVE-2022-26629 was published Mar 25, 2022
The Popup Builder WordPress plugin before 4.1.1 does not sanitise and escape the sgpb... Critical Unreviewed
CVE-2022-0479 was published Mar 29, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database