GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,055
Erlang
29
GitHub Actions
19
Go
1,889
Maven
5,000+
npm
3,605
NuGet
638
pip
3,208
Pub
10
RubyGems
852
Rust
816
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,460 advisories
Filter by severity
Improper Restriction of Operations within the Bounds of a Memory Buffer in Apache Tomcat
High
CVE-2020-13934
was published
for
org.apache.tomcat:tomcat
(Maven)
Feb 8, 2022
A crafted URI sent to httpd configured as a forward proxy (ProxyRequests on) can cause a crash ...
High
Unreviewed
CVE-2021-44224
was published
Feb 8, 2022
NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm...
Moderate
Unreviewed
CVE-2022-21815
was published
Feb 8, 2022
Codesys Profinet in version V4.2.0.0 is prone to null pointer dereference that allows a denial of...
High
Unreviewed
CVE-2022-22510
was published
Feb 3, 2022
MariaDB through 10.5.9 allows an application crash in sub_select_postjoin_aggr for a NULL value...
High
Unreviewed
CVE-2021-46664
was published
Feb 2, 2022
A flaw was found in the Linux kernel. A null pointer dereference in bond_ipsec_add_sa() may lead...
Moderate
Unreviewed
CVE-2022-0286
was published
Feb 1, 2022
NULL Pointer Dereference in Protocol Buffers
High
CVE-2021-22570
was published
for
Google.Protobuf
(Composer)
Jan 27, 2022
In Libsixel prior to and including v1.10.3, a NULL pointer dereference in the stb_image.h...
Moderate
Unreviewed
CVE-2021-45340
was published
Jan 26, 2022
A flaw in the AMF parser of Slic3r libslic3r 1.3.0 allows an attacker to cause an application...
Moderate
Unreviewed
CVE-2021-45846
was published
Jan 26, 2022
Several missing input validations in the 3MF parser component of Slic3r libslic3r 1.3.0 can each...
Moderate
Unreviewed
CVE-2021-45847
was published
Jan 26, 2022
A NULL pointer dereference issue was found in the block mirror layer of QEMU in versions prior to...
Moderate
Unreviewed
CVE-2021-4145
was published
Jan 26, 2022
On BIG-IP version 16.x before 16.1.0, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.5, and all...
High
Unreviewed
CVE-2022-23017
was published
Jan 26, 2022
On versions 16.1.x before 16.1.2 and 15.1.x before 15.1.4.1, when BIG-IP SSL Forward Proxy with...
High
Unreviewed
CVE-2022-23016
was published
Jan 26, 2022
On BIG-IP version 16.1.x before 16.1.2, when the 'Respond on Error' setting is enabled on the...
High
Unreviewed
CVE-2022-23020
was published
Jan 26, 2022
On BIG-IP version 16.1.x before 16.1.2, when any of the following configurations are configured...
High
Unreviewed
CVE-2022-23021
was published
Jan 26, 2022
On BIG-IP version 16.1.x before 16.1.2, when an HTTP profile is configured on a virtual server,...
High
Unreviewed
CVE-2022-23022
was published
Jan 26, 2022
On BIG-IP version 16.1.x before 16.1.1, 15.1.x before 15.1.4, 14.1.x before 14.1.4.4, and all...
High
Unreviewed
CVE-2022-23025
was published
Jan 26, 2022
NULL Pointer Dereference in Homebrew mruby prior to 3.2.
Moderate
Unreviewed
CVE-2022-0326
was published
Jan 22, 2022
A NULL pointer dereference vulnerability exists in GPAC v1.1.0 via the function...
Moderate
Unreviewed
CVE-2021-46236
was published
Jan 22, 2022
A NULL pointer dereference vulnerability exists in GPAC v1.1.0 via the function...
Moderate
Unreviewed
CVE-2021-46234
was published
Jan 22, 2022
A NULL pointer dereference vulnerability exists in GPAC v1.1.0 via the function...
Moderate
Unreviewed
CVE-2021-46240
was published
Jan 22, 2022
An untrusted pointer dereference vulnerability exists in GPAC v1.1.0 via the function...
Moderate
Unreviewed
CVE-2021-46237
was published
Jan 22, 2022
An untrusted pointer dereference vulnerability exists in HDF5 v1.13.1-1 via the function...
Moderate
Unreviewed
CVE-2021-46243
was published
Jan 22, 2022
A NULL pointer dereference vulnerability exists in GPAC v1.1.0 via the function...
Moderate
Unreviewed
CVE-2021-46311
was published
Jan 22, 2022
ProTip!
Advisories are also available from the
GraphQL API