Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

207 advisories

Loading
Buffer Over-read in GitHub repository vim/vim prior to 9.0.0217. High Unreviewed
CVE-2022-2845 was published Aug 18, 2022
A global buffer overflow was discovered in pngcheck function in pngcheck-2.4.0(5 patches applied)... High Unreviewed
CVE-2020-35511 was published Aug 24, 2022
Buffer Over-read in GitHub repository gpac/gpac prior to 2.1.0-DEV. High Unreviewed
CVE-2022-3178 was published Sep 13, 2022
A buffer over-read vulnerability was reported in the ThinkPadX13s BIOS LenovoSetupConfigDxe... Moderate Unreviewed
CVE-2022-4433 was published Jan 5, 2023
A buffer over-read vulnerability was reported in the ThinkPadX13s BIOS... Moderate Unreviewed
CVE-2022-4435 was published Jan 5, 2023
A buffer over-read vulnerability was reported in the ThinkPadX13s BIOS PersistenceConfigDxe... Moderate Unreviewed
CVE-2022-4432 was published Jan 5, 2023
Information disclosure in modem due to buffer over-read while processing response from DNS server High Unreviewed
CVE-2022-25728 was published Feb 12, 2023
Information disclosure in Trusted Execution Environment due to buffer over-read while processing... Moderate Unreviewed
CVE-2022-33221 was published Feb 12, 2023
Information disclosure in modem due to buffer over read in dns client due to missing length check High Unreviewed
CVE-2022-25732 was published Feb 12, 2023
Transient DOS due to buffer over-read in WLAN while processing an incoming management frame with... High Unreviewed
CVE-2022-33306 was published Feb 12, 2023
Transient DOS due to buffer over-read in WLAN Host while parsing frame information. High Unreviewed
CVE-2022-34145 was published Feb 12, 2023
Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon. High Unreviewed
CVE-2022-40512 was published Feb 12, 2023
Information disclosure due to buffer over-read in WLAN while parsing NMF frame. High Unreviewed
CVE-2022-33271 was published Feb 12, 2023
Information disclosure in modem due to buffer over-red while performing checksum of packet received High Unreviewed
CVE-2022-25738 was published Feb 12, 2023
Information disclosure due to buffer over-read in Modem while using static array to process IPv4... High Unreviewed
CVE-2022-33229 was published Feb 12, 2023
Buffer Over-read in GitHub repository gpac/gpac prior to v2.3.0-DEV. High Unreviewed
CVE-2023-0817 was published Feb 14, 2023
Transient DOS due to buffer over-read in WLAN while sending a packet to device. High Unreviewed
CVE-2022-40535 was published Mar 10, 2023
Transient DOS due to buffer over-read in WLAN Firmware while parsing secure FTMR frame with size... High Unreviewed
CVE-2022-33309 was published Mar 10, 2023
On affected platforms running Arista CloudEOS an issue in the Software Forwarding Engine (Sfe)... High Unreviewed
CVE-2023-24513 was published Apr 12, 2023
Information disclosure due to buffer overread in Linux sensors Moderate Unreviewed
CVE-2022-33297 was published Apr 13, 2023
Information disclosure due to buffer over-read in Bluetooth Host while A2DP streaming. High Unreviewed
CVE-2022-40503 was published Apr 13, 2023
Information disclosure in Modem due to buffer over-read while parsing the wms message received... High Unreviewed
CVE-2022-33295 was published Apr 13, 2023
Information disclosure in Modem due to buffer over-read while getting length of Unfragmented... High Unreviewed
CVE-2022-33287 was published Apr 13, 2023
Information disclosure sue to buffer over-read in modem while processing ipv6 packet with hop-by... High Unreviewed
CVE-2022-33228 was published Apr 13, 2023
Information disclosure in modem due to improper input validation during parsing of upcoming CoAP... High Unreviewed
CVE-2022-25747 was published Apr 13, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database