GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,268
Erlang
31
GitHub Actions
21
Go
2,042
Maven
5,000+
npm
3,736
NuGet
662
pip
3,414
Pub
12
RubyGems
891
Rust
867
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
107 advisories
Filter by severity
`NSC_DeriveKey` inadvertently assumed that the `phKey` parameter is always non-NULL. When it was...
Critical
Unreviewed
CVE-2024-11705
was published
Nov 26, 2024
An issue in coap_msg.c in Keith Cullen's FreeCoAP v.0.7 allows remote attackers to cause a Denial...
Critical
Unreviewed
CVE-2024-31030
was published
May 31, 2024
In the Linux kernel, the following vulnerability has been resolved:
net/mlx5: Properly link new...
Critical
Unreviewed
CVE-2024-35960
was published
May 20, 2024
In the Linux kernel, the following vulnerability has been resolved:
wifi: wilc1000: fix RCU...
Critical
Unreviewed
CVE-2024-27053
was published
May 1, 2024
Joda Time v2.12.5 was discovered to contain a NullPointerException via the component org.joda...
Critical
Unreviewed
CVE-2024-23080
was published
Apr 10, 2024
JGraphT Core v1.5.2 was discovered to contain a NullPointerException via the component org...
Critical
Unreviewed
CVE-2024-23078
was published
Apr 8, 2024
An issue was discovered in gpac version 2.3-DEV-rev588-g7edc40fee-master, allows remote attackers...
Critical
Unreviewed
CVE-2023-46427
was published
Mar 9, 2024
An issue in RedisGraph v.2.12.10 allows an attacker to execute arbitrary code and cause a denial...
Critical
Unreviewed
CVE-2023-47003
was published
Nov 16, 2023
The hardware emulation in the of_dpa_cmd_add_l2_flood of rocker device model in QEMU, as used in...
Critical
Unreviewed
CVE-2022-36648
was published
Aug 22, 2023
An issue was found in MojoJson v1.2.3 allows attackers to execute arbitary code via the destroy...
Critical
Unreviewed
CVE-2023-23087
was published
Feb 3, 2023
In libarchive 3.6.1, the software does not check for an error after calling calloc function that...
Critical
Unreviewed
CVE-2022-36227
was published
Nov 22, 2022
Null Pointer Dereference may occur due to improper validation while processing crafted SDP body...
Critical
Unreviewed
CVE-2021-1946
was published
May 24, 2022
NULL Pointer Dereference in the "isomedia/track.c" module's "MergeTrack()" function of GPAC v0.5...
Critical
Unreviewed
CVE-2021-28300
was published
May 24, 2022
u'Null-pointer dereference can occur while accessing data buffer beyond its size that leads to...
Critical
Unreviewed
CVE-2020-11168
was published
May 24, 2022
A null pointer dereference was addressed with improved input validation. This issue is fixed in...
Critical
Unreviewed
CVE-2019-8572
was published
May 24, 2022
Adobe Acrobat and Reader versions , 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2017...
Critical
Unreviewed
CVE-2019-8205
was published
May 24, 2022
Symonics libmysofa 0.7 has a NULL pointer dereference in getHrtf in hrtf/reader.c.
Critical
Unreviewed
CVE-2019-16092
was published
May 24, 2022
Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017...
Critical
Unreviewed
CVE-2019-8045
was published
May 24, 2022
Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017...
Critical
Unreviewed
CVE-2019-8017
was published
May 24, 2022
Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017...
Critical
Unreviewed
CVE-2019-8006
was published
May 24, 2022
In WebAccess/SCADA Versions 8.3.5 and prior, multiple untrusted pointer dereference...
Critical
Unreviewed
CVE-2019-10993
was published
May 24, 2022
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017...
Critical
Unreviewed
CVE-2019-7076
was published
May 24, 2022
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017...
Critical
Unreviewed
CVE-2019-7066
was published
May 24, 2022
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017...
Critical
Unreviewed
CVE-2019-7051
was published
May 24, 2022
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017...
Critical
Unreviewed
CVE-2019-7054
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API