Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+

5,563 advisories

Loading
Adobe InDesign versions 16.4.2 (and earlier) and 17.3 (and earlier) are affected by an out-of... Moderate Unreviewed
CVE-2022-28857 was published Sep 17, 2022
Adobe InDesign versions 16.4.2 (and earlier) and 17.3 (and earlier) are affected by an out-of... Moderate Unreviewed
CVE-2022-30673 was published Sep 17, 2022
Adobe InDesign versions 16.4.2 (and earlier) and 17.3 (and earlier) are affected by an out-of... High Unreviewed
CVE-2022-38416 was published Sep 17, 2022
Adobe InCopy version 17.3 (and earlier) and 16.4.2 (and earlier) are affected by a Heap-based... High Unreviewed
CVE-2022-38403 was published Sep 17, 2022
Adobe Photoshop versions 22.5.8 (and earlier) and 23.4.2 (and earlier) are affected by an out-of... High Unreviewed
CVE-2022-38431 was published Sep 17, 2022
An issue was discovered in gpac before 1.0.1. The abst_box_read function in box_code_adobe.c has... High Unreviewed
CVE-2020-23931 was published May 24, 2022
An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was... Moderate Unreviewed
CVE-2022-22674 was published May 27, 2022
An issue was discovered in cpp-peglib through v0.1.12. peg::resolve_escape_sequence() in peglib.h... Moderate Unreviewed
CVE-2020-23915 was published May 24, 2022
An issue was discovered in fast_ber through v0.4. yy::yylex() in asn_compiler.hpp has a heap... High Unreviewed
CVE-2020-23921 was published May 24, 2022
GStreamer before 1.18.4 may perform an out-of-bounds read when handling certain ID3v2 tags. Moderate Unreviewed
CVE-2021-3522 was published May 24, 2022
Adobe Illustrator versions 26.4 (and earlier) and 25.4.7 (and earlier) are affected by an out-of... Moderate Unreviewed
CVE-2022-38410 was published Sep 17, 2022
Adobe InDesign versions 16.4.2 (and earlier) and 17.3 (and earlier) are affected by an out-of... Moderate Unreviewed
CVE-2022-28856 was published Sep 17, 2022
Adobe Illustrator versions 26.4 (and earlier) and 25.4.7 (and earlier) are affected by an out-of... Moderate Unreviewed
CVE-2022-38409 was published Sep 17, 2022
Adobe InCopy version 17.3 (and earlier) and 16.4.2 (and earlier) are affected by an out-of-bounds... Moderate Unreviewed
CVE-2022-38407 was published Sep 17, 2022
An issue was discovered in gpac before 1.0.1. The abst_box_read function in box_code_adobe.c has... High Unreviewed
CVE-2020-23928 was published May 24, 2022
An issue was discovered in giflib through 5.1.4. DumpScreen2RGB in gif2rgb.c has a heap-based... High Unreviewed
CVE-2020-23922 was published May 24, 2022
An out-of-bounds read issue was addressed with improved input validation. This issue is fixed in... High Unreviewed
CVE-2022-26697 was published May 27, 2022
An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read during RLE... Moderate Unreviewed
CVE-2020-11760 was published May 24, 2022
When using certain mbstring functions to convert multibyte encodings, in PHP versions 7.2.x below... Moderate Unreviewed
CVE-2020-7060 was published May 24, 2022
The compile_branch function in PCRE before 8.37 allows context-dependent attackers to compile... High Unreviewed
CVE-2015-2325 was published May 24, 2022
Out-of-bounds Read vulnerability in Mitsubishi Electric GX Works2 versions 1.606G and prior,... Moderate Unreviewed
CVE-2021-20606 was published Dec 18, 2021
Object lifecycle issue in SwiftShader in Google Chrome prior to 75.0.3770.80 allowed a remote... Moderate Unreviewed
CVE-2019-5835 was published May 24, 2022
Out-of-bounds Read and Out-of-bounds Write in Facebook Hermes High
CVE-2020-1912 was published for hermes-engine (npm) May 24, 2022
The path in this case is a little bit convoluted. The end result is that via an ioctl an... Critical Unreviewed
CVE-2021-0942 was published Sep 14, 2022
In LibRaw, an out-of-bounds read vulnerability exists within the get_huffman_diff() function ... Moderate Unreviewed
CVE-2020-35531 was published Sep 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database