Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,838
Erlang
36
GitHub Actions
33
Go
2,460
Maven
5,000+
npm
4,082
NuGet
723
pip
3,872
Pub
12
RubyGems
943
Rust
1,010
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,947 advisories

Loading
There is a Heap-based buffer overflow vulnerability with the NFC module in smartphones.... Critical Unreviewed
CVE-2021-39996 was published Jan 11, 2022
The bone voice ID trusted application (TA) has a heap overflow vulnerability. Successful... Critical Unreviewed
CVE-2021-40010 was published Jan 11, 2022
The calling logic for WhatsApp for Android prior to v2.21.23, WhatsApp Business for Android prior... Critical Unreviewed
CVE-2021-24042 was published Jan 5, 2022
The screen lock module has a Stack-based Buffer Overflow vulnerability.Successful exploitation of... Critical Unreviewed
CVE-2021-39990 was published Jan 4, 2022
Dnsmasq 2.86 has a heap-based buffer overflow in check_bad_address (called from... Critical Unreviewed
CVE-2021-45951 was published Jan 2, 2022
Dnsmasq 2.86 has a heap-based buffer overflow in dhcp_reply (called from dhcp_packet and FuzzDhcp). Critical Unreviewed
CVE-2021-45952 was published Jan 2, 2022
Dnsmasq 2.86 has a heap-based buffer overflow in extract_name (called from hash_questions and... Critical Unreviewed
CVE-2021-45953 was published Jan 2, 2022
Dnsmasq 2.86 has a heap-based buffer overflow in extract_name (called from answer_auth and... Critical Unreviewed
CVE-2021-45954 was published Jan 2, 2022
Dnsmasq 2.86 has a heap-based buffer overflow in resize_packet (called from FuzzResizePacket and... Critical Unreviewed
CVE-2021-45955 was published Jan 2, 2022
Dnsmasq 2.86 has a heap-based buffer overflow in print_mac (called from log_packet and dhcp_reply). Critical Unreviewed
CVE-2021-45956 was published Jan 2, 2022
Dnsmasq 2.86 has a heap-based buffer overflow in answer_request (called from FuzzAnswerTheRequest... Critical Unreviewed
CVE-2021-45957 was published Jan 2, 2022
MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle... Critical Unreviewed
CVE-2021-37566 was published Dec 27, 2021
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated... Critical Unreviewed
CVE-2021-45637 was published Dec 27, 2021
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated... Critical Unreviewed
CVE-2021-45638 was published Dec 27, 2021
A stack-based buffer overflow vulnerability exists in the Web Manager SslGenerateCSR... Critical Unreviewed
CVE-2021-21887 was published Dec 23, 2021
A stack-based buffer overflow vulnerability exists in the Web Manager Ping functionality of... Critical Unreviewed
CVE-2021-21889 was published Dec 23, 2021
A stack-based buffer overflow vulnerability exists in the Web Manager FsBrowseClean functionality... Critical Unreviewed
CVE-2021-21890 was published Dec 23, 2021
A stack-based buffer overflow vulnerability exists in the Web Manager FsBrowseClean functionality... Critical Unreviewed
CVE-2021-21891 was published Dec 23, 2021
A stack-based buffer overflow vulnerability exists in the Web Manager FsUnmount functionality of... Critical Unreviewed
CVE-2021-21892 was published Dec 23, 2021
A stack-based buffer overflow vulnerability exists in the CMA check_udp_crc function of Garrett... Critical Unreviewed
CVE-2021-21903 was published Dec 23, 2021
An out-of-bounds write vulnerability exists in the RS-274X aperture macro variables handling... Critical Unreviewed
CVE-2021-40393 was published Dec 23, 2021
A stack buffer overflow was discovered on Realtek RTL8195AM device before 2.0.10, it exists in... Critical Unreviewed
CVE-2021-39306 was published Dec 23, 2021
In NfcTag::discoverTechnologies (activation) of NfcTag.cpp, there is a possible out of bounds... Critical Unreviewed
CVE-2021-0956 was published Dec 16, 2021
stab_xcoff_builtin_type in stabs.c in GNU Binutils through 2.37 allows attackers to cause a... Critical Unreviewed
CVE-2021-45078 was published Dec 16, 2021
A stack-based buffer overflow in handle_request function in DHT.c in toxcore 0.1.9 through 0.1.11... Critical Unreviewed
CVE-2021-44847 was published Dec 14, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database