GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,266
Erlang
31
GitHub Actions
21
Go
2,040
Maven
5,000+
npm
3,732
NuGet
662
pip
3,413
Pub
12
RubyGems
891
Rust
866
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
197 advisories
Filter by severity
There is an integer underflow vulnerability in the atcmdserver module. Successful exploitation of...
High
Unreviewed
CVE-2021-40054
was published
Mar 11, 2022
Integer underflow in ANGLE in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to...
High
Unreviewed
CVE-2021-4066
was published
Dec 24, 2021
A PV guest could DoS Xen while unmapping a grant To address XSA-380, reference counting was...
Moderate
Unreviewed
CVE-2022-23034
was published
Jan 26, 2022
An integer underflow in the DDS loader of Blender leads to an out-of-bounds read, possibly...
Moderate
Unreviewed
CVE-2022-0544
was published
Feb 25, 2022
In preloader (usb), there is a possible out of bounds write due to a integer underflow. This...
Moderate
Unreviewed
CVE-2022-20073
was published
Apr 12, 2022
An issue was discovered in FIS GT.M through V7.0-000 (related to the YottaDB code base). Using...
High
Unreviewed
CVE-2021-44509
was published
Apr 16, 2022
An issue was discovered in YottaDB through r1.32 and V7.0-000. Using crafted input, attackers can...
High
Unreviewed
CVE-2021-44489
was published
Apr 16, 2022
Integer Underflow vulnerability in Mitsubishi Electric GX Works2 versions 1.606G and prior,...
Moderate
Unreviewed
CVE-2021-20607
was published
Dec 18, 2021
NVIDIA Linux kernel distributions contain a vulnerability in FuSa Capture (VI/ISP), where integer...
High
Unreviewed
CVE-2021-1108
was published
May 24, 2022
A memory corruption vulnerability exists in the XML-parsing CreateLabelOrAttrib functionality of...
Critical
Unreviewed
CVE-2021-21811
was published
May 24, 2022
An integer underflow in fuse_lib_readdir enables arbitrary memory read operations in NTFS-3G...
Moderate
Unreviewed
CVE-2022-30787
was published
May 27, 2022
ZAngband zangband-data 2.7.5 is affected by an integer underflow vulnerability in src/tk/plat.c...
Critical
Unreviewed
CVE-2021-40589
was published
Jun 9, 2022
An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR...
Moderate
Unreviewed
CVE-2021-26260
was published
May 24, 2022
The Rating by BestWebSoft WordPress plugin through 1.5 does not validate the submitted rating,...
Moderate
Unreviewed
CVE-2021-25121
was published
Jun 21, 2022
Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and...
High
Unreviewed
CVE-2017-3034
was published
May 17, 2022
In all Android releases from CAF using the Linux kernel, an integer underflow vulnerability...
High
Unreviewed
CVE-2017-7367
was published
May 17, 2022
The Stars Rating WordPress plugin before 3.5.1 does not validate the submitted rating, allowing...
High
Unreviewed
CVE-2021-24893
was published
Jan 4, 2022
Integer overflow in drivers/char/diag/diag_dci.c in the Qualcomm components in Android before...
High
Unreviewed
CVE-2014-9883
was published
May 17, 2022
An issue was discovered in Suricata 4.1.x before 4.1.4. If the input of the function...
Critical
Unreviewed
CVE-2019-10053
was published
May 24, 2022
A vulnerability in the web server of Cisco Integrated Management Controller (IMC) could allow an...
Moderate
Unreviewed
CVE-2019-1628
was published
May 24, 2022
An Integer Underflow in MP4_EIA608_Convert() in modules/demux/mp4/mp4.c in VideoLAN VLC media...
High
Unreviewed
CVE-2019-13602
was published
May 24, 2022
An Integer underflow in VLC Media Player versions < 3.0.7 leads to an out-of-band read.
High
Unreviewed
CVE-2019-5459
was published
May 24, 2022
An issue was discovered in The Sleuth Kit (TSK) 4.6.6. There is an off-by-one overwrite due to an...
Critical
Unreviewed
CVE-2019-14532
was published
May 24, 2022
A flaw was found in xorg-x11-server before 1.20.9. An integer underflow in the X input extension...
Moderate
Unreviewed
CVE-2020-14346
was published
May 24, 2022
An integer underflow in dpdk versions before 18.11.10 and before 19.11.5 in the `move_desc`...
Moderate
Unreviewed
CVE-2020-14378
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API