GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,096
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,654
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
1,366 advisories
Filter by severity
Integer overflow in TFLite array creation
High
CVE-2022-23558
was published
for
tensorflow
(pip)
Feb 9, 2022
lookup in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.
High
Unreviewed
CVE-2022-22825
was published
Feb 10, 2022
nextScaffoldPart in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.
High
Unreviewed
CVE-2022-22826
was published
Feb 10, 2022
storeAtts in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.
High
Unreviewed
CVE-2022-22827
was published
Feb 10, 2022
In doProlog in xmlparse.c in Expat (aka libexpat) before 2.4.3, an integer overflow exists for...
High
Unreviewed
CVE-2021-46143
was published
Feb 10, 2022
Duplicate advisory: swift-nio-http2 vulnerable to denial of service via mishandled HPACK variable length integer encoding
High
GHSA-wfvq-p7qf-vv64
was published
for
github.com/apple/swift-nio-http2
(Swift)
Feb 11, 2022
•
withdrawn
Improper validation of data length received from DMA buffer can lead to memory corruption. in...
High
Unreviewed
CVE-2021-35069
was published
Feb 12, 2022
Possible integer overflow due to improper fragment datatype while calculating number of fragments...
High
Unreviewed
CVE-2021-35074
was published
Feb 12, 2022
Rat.SetString in math/big in Go before 1.16.14 and 1.17.x before 1.17.7 has an overflow that can...
High
Unreviewed
CVE-2022-23772
was published
Feb 12, 2022
Denial of Service in Bytom
High
CVE-2018-18206
was published
for
github.com/bytom/bytom
(Go)
Feb 15, 2022
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected...
High
Unreviewed
CVE-2022-24354
was published
Feb 19, 2022
In Expat (aka libexpat) before 2.4.5, there is an integer overflow in copyString.
High
Unreviewed
CVE-2022-25314
was published
Feb 19, 2022
A missing bounds check in the image loader used in Blender 3.x and 2.93.8 leads to out-of-bounds...
High
Unreviewed
CVE-2022-0546
was published
Feb 25, 2022
An integer overflow in the processing of loaded 2D images leads to a write-what-where...
High
Unreviewed
CVE-2022-0545
was published
Feb 25, 2022
TP-LINK TL-WR840N(ES)_V6.20_180709 was discovered to contain an integer overflow via the function...
High
Unreviewed
CVE-2022-25062
was published
Feb 26, 2022
There is a software integer overflow leading to a TOCTOU condition in smartphones. Successful...
High
Unreviewed
CVE-2021-22437
was published
Feb 26, 2022
There is an improper verification vulnerability in smartphones. Successful exploitation of this...
High
Unreviewed
CVE-2021-22319
was published
Feb 26, 2022
Integer overflow in cmark-gfm table parsing extension leads to heap memory corruption
High
CVE-2024-22051
was published
for
commonmarker
(RubyGems)
Mar 3, 2022
A flaw was found in OpenEXR's hufUncompress functionality in OpenEXR/IlmImf/ImfHuf.cpp. This flaw...
High
Unreviewed
CVE-2021-20300
was published
Mar 5, 2022
An integer overflow in WatchGuard Firebox and XTM appliances allows an authenticated remote...
High
Unreviewed
CVE-2022-25291
was published
Mar 5, 2022
A heap overflow vulnerability was found in bluez in versions prior to 5.63. An attacker with...
High
Unreviewed
CVE-2022-0204
was published
Mar 11, 2022
Integer Overflow or Wraparound in Microweber
High
CVE-2022-0913
was published
for
microweber/microweber
(Composer)
Mar 12, 2022
Integer Overflow in microweber
High
CVE-2022-0968
was published
for
microweber/microweber
(Composer)
Mar 16, 2022
ProTip!
Advisories are also available from the
GraphQL API