Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,454
Erlang
33
GitHub Actions
22
Go
2,153
Maven
5,000+
npm
3,818
NuGet
693
pip
3,492
Pub
12
RubyGems
902
Rust
903
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,920 advisories

Loading
There is an improper memory access permission configuration on ACPU.Successful exploitation of... Critical Unreviewed
CVE-2021-37107 was published Feb 11, 2022
Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers... Critical Unreviewed
CVE-2022-20700 was published Feb 11, 2022
Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers... Critical Unreviewed
CVE-2022-20705 was published Feb 11, 2022
Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers... Critical Unreviewed
CVE-2022-20701 was published Feb 11, 2022
Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers... Critical Unreviewed
CVE-2022-20699 was published Feb 11, 2022
Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers... Critical Unreviewed
CVE-2022-20702 was published Feb 11, 2022
Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers... Critical Unreviewed
CVE-2022-20708 was published Feb 11, 2022
Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers... Critical Unreviewed
CVE-2022-20711 was published Feb 11, 2022
Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers... Critical Unreviewed
CVE-2022-20749 was published Feb 11, 2022
Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers... Critical Unreviewed
CVE-2022-20712 was published Feb 11, 2022
An issue was discovered in IdeBusDxe in Insyde InsydeH2O with kernel 5.1 before 05.16.25, 5.2... Critical Unreviewed
CVE-2021-45970 was published Feb 10, 2022
SMM memory corruption vulnerability allowing a possible attacker to write fixed or predictable... Critical Unreviewed
CVE-2021-42554 was published Feb 10, 2022
SMM memory corruption vulnerability allowing a possible attacker to write fixed or predictable... Critical Unreviewed
CVE-2022-24030 was published Feb 10, 2022
A stack-based buffer overflow vulnerability exists in both the LLMNR functionality of Sealevel... Critical Unreviewed
CVE-2021-21960 was published Feb 10, 2022
An issue was discovered in AhciBusDxe in Insyde InsydeH2O with kernel 5.1 before 05.16.25, 5.2... Critical Unreviewed
CVE-2021-45969 was published Feb 9, 2022
An issue was discovered in SdHostDriver in Insyde InsydeH2O with kernel 5.1 before 05.16.25, 5.2... Critical Unreviewed
CVE-2021-45971 was published Feb 9, 2022
An issue was discovered in NvmExpressDxe in Insyde InsydeH2O with kernel 5.1 through 5.5. An SMM... Critical Unreviewed
CVE-2022-24031 was published Feb 9, 2022
SMM callout vulnerability allowing a possible attacker to hijack execution flow of a code running... Critical Unreviewed
CVE-2021-43615 was published Feb 9, 2022
A stack-based buffer overflow vulnerability exists in the NBNS functionality of Sealevel Systems,... Critical Unreviewed
CVE-2021-21961 was published Feb 9, 2022
A carefully crafted request body can cause a buffer overflow in the mod_lua multipart parser (r... Critical Unreviewed
CVE-2021-44790 was published Feb 8, 2022
TOTOLINK A720R v4.1.5cu.470_B20200911 was discovered to contain a stack overflow in the... Critical Unreviewed
CVE-2021-45740 was published Feb 5, 2022
An out-of-bounds write vulnerability exists in the device TestEmail functionality of reolink RLC... Critical Unreviewed
CVE-2022-21217 was published Jan 29, 2022
In TightVNC 1.3.10, there is an integer signedness error and resultant heap-based buffer overflow... Critical Unreviewed
CVE-2022-23967 was published Jan 27, 2022
Heap-based Buffer Overflow in vim/vim prior to 8.2. Critical Unreviewed
CVE-2022-0318 was published Jan 22, 2022
libspf2 before 1.2.11 has a four-byte heap-based buffer overflow that might allow remote... Critical Unreviewed
CVE-2021-33912 was published Jan 20, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database