Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

2,534 advisories

Loading
Mikrotik RouterOs before stable version 6.47 suffers from a memory corruption vulnerability in... Moderate Unreviewed
CVE-2020-20250 was published May 24, 2022
In Epson iProjection v2.30, the driver file EMP_MPAU.sys allows local users to cause a denial of... Moderate Unreviewed
CVE-2020-9453 was published May 24, 2022
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker... High Unreviewed
CVE-2021-1274 was published May 24, 2022
A null pointer dereference vulnerability in devices/vector/gdevtxtw.c and psi/zbfont.c of Artifex... Moderate Unreviewed
CVE-2020-16307 was published May 24, 2022
A null pointer dereference vulnerability in devices/gdevtsep.c of Artifex Software GhostScript v9... Moderate Unreviewed
CVE-2020-16306 was published May 24, 2022
Mikrotik RouterOs before 6.47 (stable tree) suffers from a memory corruption vulnerability in the... Moderate Unreviewed
CVE-2020-20266 was published May 24, 2022
Mikrotik RouterOs before 6.47 (stable tree) suffers from a memory corruption vulnerability in the... Moderate Unreviewed
CVE-2020-20254 was published May 24, 2022
A user may be tricked into opening a malicious FBX file which may exploit an Untrusted Pointer... High Unreviewed
CVE-2021-40157 was published May 24, 2022
Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache... High Unreviewed
CVE-2021-34798 was published May 24, 2022
A NULL pointer dereference issue was discovered in the Linux kernel in... Moderate Unreviewed
CVE-2022-4127 was published Nov 29, 2022
A NULL pointer dereference issue was discovered in the Linux kernel in the MPTCP protocol when... Moderate Unreviewed
CVE-2022-4128 was published Nov 29, 2022
Wind River VxWorks 6.9 and vx7 has an array index error in the IGMPv3 client component. There is... High Unreviewed
CVE-2019-12259 was published May 24, 2022
An exploitable denial-of-service vulnerability exists in the thumbnail display functionality of... High Unreviewed
CVE-2018-4024 was published May 24, 2022
A flaw was found in the Linux kernel. A null pointer dereference in bond_ipsec_add_sa() may lead... Moderate Unreviewed
CVE-2022-0286 was published Feb 1, 2022
A null pointer dereference vulnerability exists in the handle_ioctl_8314C functionality of... Moderate Unreviewed
CVE-2022-43589 was published Nov 28, 2022
An exploitable NULL pointer dereference vulnerability exists in the MQTT packet parsing... High Unreviewed
CVE-2017-2893 was published May 13, 2022
huft_build in archival/libarchive/decompress_gunzip.c in BusyBox before 1.27.2 misuses a pointer,... Moderate Unreviewed
CVE-2015-9261 was published May 13, 2022
A null pointer dereference vulnerability exists in the handle_ioctl_0x830a0_systembuffer... Moderate Unreviewed
CVE-2022-43590 was published Nov 28, 2022
A null pointer dereference vulnerability exists in the handle_ioctl_83150 functionality of... Moderate Unreviewed
CVE-2022-43588 was published Nov 28, 2022
Missing validation results in undefined behavior in `QuantizedConv2D` Moderate
CVE-2022-29201 was published for tensorflow (pip) May 24, 2022
Segfault due to missing support for quantized types Moderate
CVE-2022-29205 was published for tensorflow (pip) May 24, 2022
NULL Pointer Dereference in HyperLedger Fabric High
CVE-2021-43667 was published for github.com/hyperledger/fabric (Go) May 25, 2022
Missing validation results in undefined behavior in `SparseTensorDenseAdd Moderate
CVE-2022-29206 was published for tensorflow (pip) May 24, 2022
It was found in FreeBSD 8.0, 6.3 and 4.9, and OpenBSD 4.6 that a null pointer dereference in ftpd... High Unreviewed
CVE-2010-4816 was published Apr 21, 2022
An issue was discovered in YottaDB through r1.32 and V7.0-000. A lack of NULL checks in trip_gen... High Unreviewed
CVE-2021-44485 was published Apr 16, 2022
ProTip! Advisories are also available from the GraphQL API