Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,409
Erlang
33
GitHub Actions
22
Go
2,144
Maven
5,000+
npm
3,808
NuGet
687
pip
3,481
Pub
12
RubyGems
897
Rust
898
Swift
38
Unreviewed advisories
All unreviewed
5,000+

327 advisories

Loading
In crus_afe_get_param of msm-cirrus-playback.c, there is a possible out of bounds read due to an... Low Unreviewed
CVE-2020-0068 was published May 24, 2022
In f2fs_xattr_generic_list of xattr.c, there is a possible out of bounds read due to a missing... Low Unreviewed
CVE-2020-0067 was published May 24, 2022
In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a... Low Unreviewed
CVE-2020-0093 was published May 24, 2022
A vulnerability was found in DPDK versions 18.11 and above. The vhost-crypto library code is... Low Unreviewed
CVE-2020-10724 was published May 24, 2022
An issue was discovered in FreeRDP before 2.1.1. An out-of-bounds (OOB) read vulnerability has... Low Unreviewed
CVE-2020-13397 was published May 24, 2022
An issue was discovered in FreeRDP before 2.1.1. An out-of-bounds (OOB) read vulnerability has... Low Unreviewed
CVE-2020-13396 was published May 24, 2022
sd_wp_addr in hw/sd/sd.c in QEMU 4.2.0 uses an unvalidated address, which leads to an out-of... Low Unreviewed
CVE-2020-13253 was published May 24, 2022
In QEMU 4.2.0, megasas_lookup_frame in hw/scsi/megasas.c has an out-of-bounds read via a crafted... Low Unreviewed
CVE-2020-13362 was published May 24, 2022
Buffer over-read in ADSP parse function due to lack of check for availability of sufficient data... Low Unreviewed
CVE-2019-14038 was published May 24, 2022
hw/pci/pci.c in QEMU 4.2.0 allows guest OS users to trigger an out-of-bounds access by providing... Low Unreviewed
CVE-2020-13791 was published May 24, 2022
An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to... Low Unreviewed
CVE-2020-12862 was published May 24, 2022
An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to... Low Unreviewed
CVE-2020-12864 was published May 24, 2022
An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to... Low Unreviewed
CVE-2020-12863 was published May 24, 2022
VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202006401-SG and 6.5 before... Low Unreviewed
CVE-2020-3965 was published May 24, 2022
A buffer over-read flaw was found in RH kernel versions before 5.0 in crypto_authenc_extractkeys... Low Unreviewed
CVE-2020-10769 was published May 24, 2022
njs through 0.4.3, used in NGINX, has an out-of-bounds read in njs_lvlhsh_level_find in... Low Unreviewed
CVE-2020-24347 was published May 24, 2022
njs through 0.4.3, used in NGINX, has an out-of-bounds read in njs_json_stringify_iterator in... Low Unreviewed
CVE-2020-24348 was published May 24, 2022
A vulnerability in an Trend Micro Apex One dll may allow an attacker to manipulate it to cause an... Low Unreviewed
CVE-2020-24558 was published May 24, 2022
Acrobat Reader DC versions versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier)... Low Unreviewed
CVE-2021-21034 was published May 24, 2022
Acrobat Reader DC versions versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier)... Low Unreviewed
CVE-2021-21042 was published May 24, 2022
This vulnerability allows local attackers to disclose sensitive information on affected... Low Unreviewed
CVE-2021-27260 was published May 24, 2022
Adobe Bridge versions 10.1.1 (and earlier) and 11.0.1 (and earlier) are affected by an Out-of... Low Unreviewed
CVE-2021-21091 was published May 24, 2022
The cli_feat_read_cb() function in src/gatt-database.c does not perform bounds checks on the ... Low Unreviewed
CVE-2021-3588 was published May 24, 2022
There is an out of bounds read vulnerability in eSE620X vESS V100R001C10SPC200, V100R001C20SPC200... Low Unreviewed
CVE-2021-22365 was published May 24, 2022
Bootloader contains a vulnerability in the NV3P server where any user with physical access... Low Unreviewed
CVE-2021-1111 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database