GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
2,814 advisories
Filter by severity
A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability...
Moderate
Unreviewed
CVE-2022-24322
was published
Mar 11, 2022
An issue was discovered in Softing OPC UA C++ SDK before 5.70. An invalid XML element in the type...
Moderate
Unreviewed
CVE-2021-42262
was published
Mar 13, 2022
Multiple buffer overflows in unspecified COM objects in Rational Common Licensing 7.0 through 7.1...
Moderate
Unreviewed
CVE-2011-1205
was published
May 17, 2022
The SPICE Firefox plug-in (spice-xpi) 2.4, 2.3, 2.2, and possibly other versions allows remote...
Moderate
Unreviewed
CVE-2011-1179
was published
May 17, 2022
Heap-based buffer overflow in Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha allows remote...
Moderate
Unreviewed
CVE-2011-0427
was published
May 17, 2022
A certain Fedora patch for gif2png.c in gif2png 2.5.1 and 2.5.2, as distributed in gif2png-2.5.1...
Moderate
Unreviewed
CVE-2010-4695
was published
May 17, 2022
Multiple stack-based buffer overflows in unspecified CGI programs in the Unified Maintenance Tool...
Moderate
Unreviewed
CVE-2011-0344
was published
May 17, 2022
Buffer overflow in IBM WebSphere MQ 7.0 before 7.0.1.4 allows remote attackers to execute...
Moderate
Unreviewed
CVE-2011-0310
was published
May 17, 2022
Heap-based buffer overflow in IBM WebSphere MQ 6.0 before 6.0.2.11 and 7.0 before 7.0.1.5 allows...
Moderate
Unreviewed
CVE-2011-0314
was published
May 17, 2022
Buffer overflow in gif2png.c in gif2png 2.5.3 and earlier might allow context-dependent attackers...
Moderate
Unreviewed
CVE-2010-4694
was published
May 17, 2022
IBM Tivoli Directory Server (TDS) 6.0.0.x before 6.0.0.8-TIV-ITDS-IF0007 does not properly handle...
Moderate
Unreviewed
CVE-2010-4216
was published
May 17, 2022
CoreText in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute...
Moderate
Unreviewed
CVE-2015-5761
was published
May 17, 2022
Heap-based buffer overflow in the GSM mobility management implementation in Telephony in Apple...
Moderate
Unreviewed
CVE-2010-3832
was published
May 17, 2022
Heap-based buffer overflow in the convert_to_idna function in WWW/Library/Implementation/HTParse...
Moderate
Unreviewed
CVE-2010-2810
was published
May 17, 2022
CoreMedia Playback in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to...
Moderate
Unreviewed
CVE-2015-5778
was published
May 17, 2022
WebKit, as used in Apple iOS before 9.1, Safari before 9.0.1, and iTunes before 12.3.1, allows...
Moderate
Unreviewed
CVE-2015-5930
was published
May 17, 2022
FontParser in Apple iOS before 9.1, OS X before 10.11.1, and watchOS before 2.0.1 allows remote...
Moderate
Unreviewed
CVE-2015-5942
was published
May 17, 2022
The Accelerate Framework component in Apple iOS before 9.1 and OS X before 10.11.1, when multi...
Moderate
Unreviewed
CVE-2015-5940
was published
May 17, 2022
CoreMedia Playback in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to...
Moderate
Unreviewed
CVE-2015-5777
was published
May 17, 2022
ImageIO in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute...
Moderate
Unreviewed
CVE-2015-5758
was published
May 17, 2022
Apple QuickTime before 7.7.8 allows remote attackers to execute arbitrary code or cause a denial...
Moderate
Unreviewed
CVE-2015-5786
was published
May 17, 2022
FontParser in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute...
Moderate
Unreviewed
CVE-2015-5756
was published
May 17, 2022
The OpenGL implementation in Apple iOS before 9.1 and OS X before 10.11.1 allows remote attackers...
Moderate
Unreviewed
CVE-2015-5924
was published
May 17, 2022
WebKit, as used in Apple iOS before 9.1, Safari before 9.0.1, and iTunes before 12.3.1, allows...
Moderate
Unreviewed
CVE-2015-5928
was published
May 17, 2022
Stack-based buffer overflow in the HTTP proxy service in Alcatel-Lucent OmniVista 4760 server...
Moderate
Unreviewed
CVE-2010-3281
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API