GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,534 advisories
Filter by severity
Mikrotik RouterOs before stable version 6.47 suffers from a memory corruption vulnerability in...
Moderate
Unreviewed
CVE-2020-20250
was published
May 24, 2022
In Epson iProjection v2.30, the driver file EMP_MPAU.sys allows local users to cause a denial of...
Moderate
Unreviewed
CVE-2020-9453
was published
May 24, 2022
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker...
High
Unreviewed
CVE-2021-1274
was published
May 24, 2022
A null pointer dereference vulnerability in devices/vector/gdevtxtw.c and psi/zbfont.c of Artifex...
Moderate
Unreviewed
CVE-2020-16307
was published
May 24, 2022
A null pointer dereference vulnerability in devices/gdevtsep.c of Artifex Software GhostScript v9...
Moderate
Unreviewed
CVE-2020-16306
was published
May 24, 2022
Mikrotik RouterOs before 6.47 (stable tree) suffers from a memory corruption vulnerability in the...
Moderate
Unreviewed
CVE-2020-20266
was published
May 24, 2022
Mikrotik RouterOs before 6.47 (stable tree) suffers from a memory corruption vulnerability in the...
Moderate
Unreviewed
CVE-2020-20254
was published
May 24, 2022
A user may be tricked into opening a malicious FBX file which may exploit an Untrusted Pointer...
High
Unreviewed
CVE-2021-40157
was published
May 24, 2022
Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache...
High
Unreviewed
CVE-2021-34798
was published
May 24, 2022
A NULL pointer dereference issue was discovered in the Linux kernel in...
Moderate
Unreviewed
CVE-2022-4127
was published
Nov 29, 2022
A NULL pointer dereference issue was discovered in the Linux kernel in the MPTCP protocol when...
Moderate
Unreviewed
CVE-2022-4128
was published
Nov 29, 2022
Wind River VxWorks 6.9 and vx7 has an array index error in the IGMPv3 client component. There is...
High
Unreviewed
CVE-2019-12259
was published
May 24, 2022
An exploitable denial-of-service vulnerability exists in the thumbnail display functionality of...
High
Unreviewed
CVE-2018-4024
was published
May 24, 2022
A flaw was found in the Linux kernel. A null pointer dereference in bond_ipsec_add_sa() may lead...
Moderate
Unreviewed
CVE-2022-0286
was published
Feb 1, 2022
A null pointer dereference vulnerability exists in the handle_ioctl_8314C functionality of...
Moderate
Unreviewed
CVE-2022-43589
was published
Nov 28, 2022
An exploitable NULL pointer dereference vulnerability exists in the MQTT packet parsing...
High
Unreviewed
CVE-2017-2893
was published
May 13, 2022
huft_build in archival/libarchive/decompress_gunzip.c in BusyBox before 1.27.2 misuses a pointer,...
Moderate
Unreviewed
CVE-2015-9261
was published
May 13, 2022
A null pointer dereference vulnerability exists in the handle_ioctl_0x830a0_systembuffer...
Moderate
Unreviewed
CVE-2022-43590
was published
Nov 28, 2022
A null pointer dereference vulnerability exists in the handle_ioctl_83150 functionality of...
Moderate
Unreviewed
CVE-2022-43588
was published
Nov 28, 2022
Missing validation results in undefined behavior in `QuantizedConv2D`
Moderate
CVE-2022-29201
was published
for
tensorflow
(pip)
May 24, 2022
Segfault due to missing support for quantized types
Moderate
CVE-2022-29205
was published
for
tensorflow
(pip)
May 24, 2022
NULL Pointer Dereference in HyperLedger Fabric
High
CVE-2021-43667
was published
for
github.com/hyperledger/fabric
(Go)
May 25, 2022
Missing validation results in undefined behavior in `SparseTensorDenseAdd
Moderate
CVE-2022-29206
was published
for
tensorflow
(pip)
May 24, 2022
It was found in FreeBSD 8.0, 6.3 and 4.9, and OpenBSD 4.6 that a null pointer dereference in ftpd...
High
Unreviewed
CVE-2010-4816
was published
Apr 21, 2022
An issue was discovered in YottaDB through r1.32 and V7.0-000. A lack of NULL checks in trip_gen...
High
Unreviewed
CVE-2021-44485
was published
Apr 16, 2022
ProTip!
Advisories are also available from the
GraphQL API