GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
12,724 advisories
Filter by severity
A vulnerability in the CLI parser of Cisco FXOS Software and Cisco UCS Fabric Interconnect...
High
Unreviewed
CVE-2018-0302
was published
May 13, 2022
A vulnerability in the Secure Shell (SSH) subsystem of Cisco Small Business Managed Switches...
Moderate
Unreviewed
CVE-2017-6720
was published
May 13, 2022
ReadPSDImage in coders/psd.c in ImageMagick 7.0.7-6 allows remote attackers to cause a denial of...
High
Unreviewed
CVE-2017-15281
was published
May 13, 2022
Heap-based buffer overflow in OpenJPEG 1.3 has unspecified impact and remote vectors, a different...
High
Unreviewed
CVE-2013-6054
was published
May 13, 2022
hw/virtio/virtio.c in the Virtual Network Device (virtio-net) support in QEMU, when big or...
Moderate
Unreviewed
CVE-2015-7295
was published
May 13, 2022
The JPEG 2000 codec (jp2.c) in OpenJPEG before 1.5 allows remote attackers to execute arbitrary...
High
Unreviewed
CVE-2012-1499
was published
May 13, 2022
Multiple heap-based buffer overflows in OpenJPEG 1.3 and earlier might allow remote attackers to...
High
Unreviewed
CVE-2013-6045
was published
May 13, 2022
Heap-based buffer overflow in OpenJPEG 1.5.0 and earlier allows remote attackers to cause a...
Moderate
Unreviewed
CVE-2012-3535
was published
May 13, 2022
Multiple heap-based buffer overflows in the j2k_read_sot function in j2k.c in OpenJPEG 1.5 allow...
High
Unreviewed
CVE-2012-3358
was published
May 13, 2022
Heap-based buffer overflow in the color_cmyk_to_rgb in common/color.c in OpenJPEG before 2.1.1...
Moderate
Unreviewed
CVE-2016-4796
was published
May 13, 2022
The opj_tgt_reset function in OpenJpeg 2016.1.18 allows remote attackers to cause a denial of...
Moderate
Unreviewed
CVE-2016-1924
was published
May 13, 2022
Stack-based buffer overflow in OpenJPEG before 1.5.2 allows remote attackers to have unspecified...
High
Unreviewed
CVE-2013-4290
was published
May 13, 2022
Heap-based buffer overflow in the JPEG2000 image tile decoder in OpenJPEG before 1.5.2 allows...
High
Unreviewed
CVE-2014-0158
was published
May 13, 2022
Heap-based buffer overflow in the opj_j2k_update_image_data function in OpenJpeg 2016.1.18 allows...
Moderate
Unreviewed
CVE-2016-1923
was published
May 13, 2022
Heap Buffer Overflow (WRITE of size 4) in function pnmtoimage of convert.c:1719 in OpenJPEG 2.1.2.
Moderate
Unreviewed
CVE-2016-9118
was published
May 13, 2022
Heap Buffer Over-read in function imagetotga of convert.c(jp2):942 in OpenJPEG 2.1.2. Impact is...
Moderate
Unreviewed
CVE-2016-9115
was published
May 13, 2022
An infinite loop vulnerability in tiftoimage that results in heap buffer overflow in...
High
Unreviewed
CVE-2016-9581
was published
May 13, 2022
Heap-based buffer overflow vulnerability in the opj_mqc_byteout function in mqc.c in OpenJPEG...
Moderate
Unreviewed
CVE-2016-10504
was published
May 13, 2022
Bounds check in Kernel subsystem in Intel CSME before version 11.8.60, 11.11.60, 11.22.60 or 12.0...
High
Unreviewed
CVE-2018-12191
was published
May 13, 2022
Heap-based buffer overflow in dns.cpp in InspIRCd 2.0.5 might allow remote attackers to execute...
High
Unreviewed
CVE-2012-1836
was published
May 13, 2022
Buffer underflow vulnerability in the Debian inspircd package before 2.0.5-1+deb7u1 for wheezy...
Critical
Unreviewed
CVE-2015-6674
was published
May 13, 2022
A buffer overflow vulnerability in the control protocol of Disk Savvy Enterprise v10.4.18 allows...
Critical
Unreviewed
CVE-2018-6481
was published
May 13, 2022
A buffer overflow vulnerability in the web server of some Hikvision IP Cameras allows an attacker...
Critical
Unreviewed
CVE-2018-6414
was published
May 13, 2022
The jas_matrix_asl function in jas_seq.c in JasPer 1.900.27 allows remote attackers to cause a...
Moderate
Unreviewed
CVE-2017-5505
was published
May 13, 2022
An issue was discovered in Qt before 5.11.3. QBmpHandler has a buffer overflow via BMP data.
Critical
Unreviewed
CVE-2018-19873
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API