GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,563 advisories
Filter by severity
Adobe InDesign versions 16.4.2 (and earlier) and 17.3 (and earlier) are affected by an out-of...
Moderate
Unreviewed
CVE-2022-28856
was published
Sep 17, 2022
Adobe InCopy version 17.3 (and earlier) and 16.4.2 (and earlier) are affected by an out-of-bounds...
Moderate
Unreviewed
CVE-2022-38407
was published
Sep 17, 2022
Adobe Illustrator versions 26.4 (and earlier) and 25.4.7 (and earlier) are affected by an out-of...
Moderate
Unreviewed
CVE-2022-38409
was published
Sep 17, 2022
GStreamer before 1.18.4 may perform an out-of-bounds read when handling certain ID3v2 tags.
Moderate
Unreviewed
CVE-2021-3522
was published
May 24, 2022
An issue was discovered in cpp-peglib through v0.1.12. peg::resolve_escape_sequence() in peglib.h...
Moderate
Unreviewed
CVE-2020-23915
was published
May 24, 2022
An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was...
Moderate
Unreviewed
CVE-2022-22674
was published
May 27, 2022
Adobe InDesign versions 16.4.2 (and earlier) and 17.3 (and earlier) are affected by an out-of...
Moderate
Unreviewed
CVE-2022-30673
was published
Sep 17, 2022
Adobe InDesign versions 16.4.2 (and earlier) and 17.3 (and earlier) are affected by an out-of...
Moderate
Unreviewed
CVE-2022-28857
was published
Sep 17, 2022
Adobe InDesign versions 16.4.2 (and earlier) and 17.3 (and earlier) are affected by an out-of...
Moderate
Unreviewed
CVE-2022-30672
was published
Sep 17, 2022
Adobe InDesign versions 16.4.2 (and earlier) and 17.3 (and earlier) are affected by an out-of...
Moderate
Unreviewed
CVE-2022-30675
was published
Sep 17, 2022
Possible buffer overflow due to lack of buffer length check during management frame Rx handling...
Moderate
Unreviewed
CVE-2022-25663
was published
Oct 19, 2022
Adobe InDesign versions 16.4.2 (and earlier) and 17.3 (and earlier) are affected by an out-of...
Moderate
Unreviewed
CVE-2022-30676
was published
Sep 17, 2022
The pcre_compile2 function in PCRE before 8.37 allows context-dependent attackers to compile...
Moderate
Unreviewed
CVE-2015-2326
was published
May 24, 2022
fig2dev 3.2.7b contains a segmentation fault in the gencgm_start function in gencgm.c.
Moderate
Unreviewed
CVE-2020-21535
was published
May 24, 2022
In WLAN driver, there is a possible out of bounds read due to an incorrect bounds check. This...
Moderate
Unreviewed
CVE-2022-21756
was published
Jun 7, 2022
Adobe InDesign versions 16.4.2 (and earlier) and 17.3 (and earlier) are affected by an out-of...
Moderate
Unreviewed
CVE-2022-28854
was published
Sep 17, 2022
libjpeg 1.63 has a heap-based buffer over-read in HierarchicalBitmapRequester::FetchRegion in...
Moderate
Unreviewed
CVE-2022-31796
was published
Jun 3, 2022
Apache HTTP Server 2.4.53 and earlier on Windows may read beyond bounds when configured to...
Moderate
Unreviewed
CVE-2022-28330
was published
Jun 10, 2022
Ill-formed headers may lead to unexpected behavior in Istio
Moderate
CVE-2022-31045
was published
for
istio.io/istio
(Go)
Jun 10, 2022
In imgsensor, there is a possible out of bounds read due to a missing bounds check. This could...
Moderate
Unreviewed
CVE-2022-21746
was published
Jun 7, 2022
In WLAN driver, there is a possible out of bounds read due to an incorrect bounds check. This...
Moderate
Unreviewed
CVE-2022-21755
was published
Jun 7, 2022
In Libav 12.3, there is a heap-based buffer over-read in vc1_decode_b_mb_intfi in vc1_block.c...
Moderate
Unreviewed
CVE-2020-18775
was published
May 24, 2022
In Libav 12.3, there is a heap-based buffer over-read in vc1_decode_p_mb_intfi in vc1_block.c...
Moderate
Unreviewed
CVE-2020-18778
was published
May 24, 2022
Trend Micro Security 2022 and 2021 (Consumer) is vulnerable to an Out-Of-Bounds Read Information...
Moderate
Unreviewed
CVE-2022-30702
was published
Jun 10, 2022
An issue was discovered in the Linux kernel before 5.14.15. There is an array-index-out-of-bounds...
Moderate
Unreviewed
CVE-2021-43389
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API