Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+

2,927 advisories

Loading
Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache... High Unreviewed
CVE-2021-34798 was published May 24, 2022
A user may be tricked into opening a malicious FBX file which may exploit an Untrusted Pointer... High Unreviewed
CVE-2021-40157 was published May 24, 2022
Mikrotik RouterOs before 6.47 (stable tree) suffers from a memory corruption vulnerability in the... Moderate Unreviewed
CVE-2020-20254 was published May 24, 2022
Mikrotik RouterOs before 6.47 (stable tree) suffers from a memory corruption vulnerability in the... Moderate Unreviewed
CVE-2020-20266 was published May 24, 2022
A null pointer dereference vulnerability in devices/vector/gdevtxtw.c and psi/zbfont.c of Artifex... Moderate Unreviewed
CVE-2020-16307 was published May 24, 2022
A null pointer dereference vulnerability in devices/gdevtsep.c of Artifex Software GhostScript v9... Moderate Unreviewed
CVE-2020-16306 was published May 24, 2022
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker... High Unreviewed
CVE-2021-1274 was published May 24, 2022
In Epson iProjection v2.30, the driver file EMP_MPAU.sys allows local users to cause a denial of... Moderate Unreviewed
CVE-2020-9453 was published May 24, 2022
Mikrotik RouterOs before stable version 6.47 suffers from a memory corruption vulnerability in... Moderate Unreviewed
CVE-2020-20252 was published May 24, 2022
Mikrotik RouterOs before stable version 6.47 suffers from a memory corruption vulnerability in... Moderate Unreviewed
CVE-2020-20250 was published May 24, 2022
In librt in the GNU C Library (aka glibc) through 2.34, sysdeps/unix/sysv/linux/mq_notify.c... High Unreviewed
CVE-2021-38604 was published May 24, 2022
An issue was discovered in swftools through 20201222. A NULL pointer dereference exists in the... Moderate Unreviewed
CVE-2021-42196 was published Jun 3, 2022
Foxit PDF Reader v11.2.1.53537 was discovered to contain a NULL pointer dereference via the... Moderate Unreviewed
CVE-2022-27359 was published May 6, 2022
With shadow paging enabled, the INVPCID instruction results in a call to kvm_mmu_invpcid_gva. If... Moderate Unreviewed
CVE-2022-1789 was published Jun 3, 2022
Unicorn Engine v2.0.0-rc7 and below was discovered to contain a NULL pointer dereference via... High Unreviewed
CVE-2022-29694 was published Jun 3, 2022
In libjpeg 1.63, there is a NULL pointer dereference in Component::SubXOf in component.hpp. Moderate Unreviewed
CVE-2022-32201 was published Jun 3, 2022
A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS... High Unreviewed
CVE-2020-3517 was published May 24, 2022
A denial-of-service vulnerability exists in the HTTP Server functionality of Micrium uC-HTTP 3.01... High Unreviewed
CVE-2020-13583 was published May 24, 2022
An issue was discovered in swftools through 20201222. A NULL pointer dereference exists in the... Moderate Unreviewed
CVE-2021-42198 was published Jun 3, 2022
While fuzzing the 2.4.49 httpd, a new null pointer dereference was detected during HTTP/2 request... High Unreviewed
CVE-2021-41524 was published May 24, 2022
An issue was discovered in swftools through 20201222. A NULL pointer dereference exists in the... Moderate Unreviewed
CVE-2021-42202 was published Jun 3, 2022
An issue was discovered in src/http/httpLib.c in EmbedThis Appweb Community Edition 8.2.1, allows... High Unreviewed
CVE-2021-33254 was published Jun 3, 2022
libmobi before v0.10 contains a NULL pointer dereference via the component mobi_buffer_getpointer... Moderate Unreviewed
CVE-2022-29788 was published Jun 3, 2022
In libjpeg 1.63, there is a NULL pointer dereference in LineBuffer::FetchRegion in linebuffer.cpp. Moderate Unreviewed
CVE-2022-32202 was published Jun 3, 2022
Varnish varnish-modules before 0.17.1 allows remote attackers to cause a denial of service ... High Unreviewed
CVE-2021-28543 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database