Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

609 advisories

Loading
Arbitrary code execution in clickhouse-driver Critical
CVE-2020-26759 was published for clickhouse-driver (pip) Apr 7, 2021
xzkostyan
Multiple security issues including data race, buffer overflow, and uninitialized memory drop in arr Critical
CVE-2020-35887 was published for arr (Rust) Aug 25, 2021
Buffer Overflow in Pillow Critical
CVE-2021-34552 was published for pillow (pip) Oct 5, 2021
tdunlap607
PCX P mode buffer overflow in Pillow Critical
CVE-2020-5312 was published for Pillow (pip) Nov 3, 2021
Buffer Overflow vulnerability in tvnviewer.exe of TightVNC Viewer allows a remote attacker to... Critical Unreviewed
CVE-2021-42785 was published Nov 24, 2021
Buffer overflow vulnerability in function SetFirewall in index.cgi in CIRCUTOR COMPACT DC-S BASIC... Critical Unreviewed
CVE-2021-26777 was published Dec 3, 2021
An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. A buffer overflow... Critical Unreviewed
CVE-2021-43042 was published Dec 7, 2021
A buffer overflow vulnerability in SMA100 sonicfiles RAC_COPY_TO (RacNumber 36) method allows a... Critical Unreviewed
CVE-2021-20045 was published Dec 9, 2021
The olm_session_describe function in Matrix libolm before 3.2.7 is vulnerable to a buffer... Critical Unreviewed
CVE-2021-44538 was published Dec 15, 2021
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This... Critical Unreviewed
CVE-2021-45611 was published Dec 27, 2021
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This... Critical Unreviewed
CVE-2021-45608 was published Dec 27, 2021
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This... Critical Unreviewed
CVE-2021-45609 was published Dec 27, 2021
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This... Critical Unreviewed
CVE-2021-45610 was published Dec 27, 2021
Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects... Critical Unreviewed
CVE-2021-45527 was published Dec 27, 2021
NETGEAR R8000 devices before 1.0.4.62 are affected by a buffer overflow by an authenticated user. Critical Unreviewed
CVE-2021-45524 was published Dec 27, 2021
ASUS RT-N53 3.0.0.4.376.3754 devices have a buffer overflow via a long lan_dns1_x or lan_dns2_x... Critical Unreviewed
CVE-2019-20082 was published Dec 29, 2021
A stack buffer overflow vulnerability has been reported to affect QNAP NAS running Surveillance... Critical Unreviewed
CVE-2021-38687 was published Dec 30, 2021
An out of bound memory access can occur due to improper validation of number of frames being... Critical Unreviewed
CVE-2021-30351 was published Jan 4, 2022
The deprecated compatibility function clnt_create in the sunrpc module of the GNU C Library (aka... Critical Unreviewed
CVE-2022-23219 was published Jan 15, 2022
The deprecated compatibility function svcunix_create in the sunrpc module of the GNU C Library ... Critical Unreviewed
CVE-2022-23218 was published Jan 15, 2022
Buffer overflow vulnerability has been identified in Lexmark devices through 2021-12-07 in... Critical Unreviewed
CVE-2021-44738 was published Jan 21, 2022
An issue was discovered in SdHostDriver in Insyde InsydeH2O with kernel 5.1 before 05.16.25, 5.2... Critical Unreviewed
CVE-2021-45971 was published Feb 9, 2022
An issue was discovered in AhciBusDxe in Insyde InsydeH2O with kernel 5.1 before 05.16.25, 5.2... Critical Unreviewed
CVE-2021-45969 was published Feb 9, 2022
An issue was discovered in IdeBusDxe in Insyde InsydeH2O with kernel 5.1 before 05.16.25, 5.2... Critical Unreviewed
CVE-2021-45970 was published Feb 10, 2022
A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could cause a... Critical Unreviewed
CVE-2022-24313 was published Feb 11, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database