Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,656
Maven
5,000+
npm
4,284
NuGet
760
pip
4,069
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

931 advisories

Loading
Use after free in garbage collector and finalizer of lgc.c in Lua interpreter 5.4.0~5.4.3 allows... Moderate Unreviewed
CVE-2021-44964 was published Mar 15, 2022
An use after free vulnerability in sdp driver prior to SMR Mar-2022 Release 1 allows kernel crash. Moderate Unreviewed
CVE-2022-25822 was published Mar 11, 2022
Use After Free in r_reg_get_name_idx in GitHub repository radareorg/radare2 prior to 5.6.6. Moderate Unreviewed
CVE-2022-0849 was published Mar 6, 2022
The interface of a certain HarmonyOS module has a UAF vulnerability. Successful exploitation of... Moderate Unreviewed
CVE-2021-22478 was published Feb 26, 2022
A use-after-free vulnerability was found in usbredir in versions prior to 0.11.0 in the... Moderate Unreviewed
CVE-2021-3700 was published Feb 25, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected... Moderate Unreviewed
CVE-2022-24061 was published Feb 19, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected... Moderate Unreviewed
CVE-2022-24368 was published Feb 19, 2022
VMware ESXi, Workstation, and Fusion contain a use-after-free vulnerability in the XHCI USB... Moderate Unreviewed
CVE-2021-22040 was published Feb 17, 2022
In vcu driver, there is a possible information disclosure due to a use after free. This could... Moderate Unreviewed
CVE-2022-20035 was published Feb 11, 2022
A use-after-free vulnerability was found in rtsx_usb_ms_drv_remove in drivers/memstick/host... Moderate Unreviewed
CVE-2022-0487 was published Feb 10, 2022
Jsish v3.5.0 was discovered to contain a heap-use-after-free via Jsi_IncrRefCount in src/jsiValue... Moderate Unreviewed
CVE-2021-46484 was published Jan 28, 2022
Jsish v3.5.0 was discovered to contain a heap-use-after-free via Jsi_DecrRefCount in src/jsiValue... Moderate Unreviewed
CVE-2021-46489 was published Jan 28, 2022
Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_ValueLookupBase in src... Moderate Unreviewed
CVE-2021-46494 was published Jan 28, 2022
Jsish v3.5.0 was discovered to contain a heap-use-after-free via DeleteTreeValue in src/jsiObj.c.... Moderate Unreviewed
CVE-2021-46495 was published Jan 28, 2022
Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_UserObjDelete in src... Moderate Unreviewed
CVE-2021-46497 was published Jan 28, 2022
Jsish v3.5.0 was discovered to contain a heap-use-after-free via Jsi_ObjFree in src/jsiObj.c.... Moderate Unreviewed
CVE-2021-46496 was published Jan 28, 2022
Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_wswebsocketObjFree in src... Moderate Unreviewed
CVE-2021-46498 was published Jan 28, 2022
Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_ValueCopyMove in src... Moderate Unreviewed
CVE-2021-46499 was published Jan 28, 2022
Jsish v3.5.0 was discovered to contain a heap-use-after-free via jsi_ArgTypeCheck in src/jsiFunc... Moderate Unreviewed
CVE-2021-46500 was published Jan 28, 2022
Jsish v3.5.0 was discovered to contain a heap-use-after-free via SortSubCmd in src/jsiArray.c.... Moderate Unreviewed
CVE-2021-46501 was published Jan 28, 2022
Jsish v3.5.0 was discovered to contain a heap-use-after-free via /usr/lib/x86_64-linux-gnu... Moderate Unreviewed
CVE-2021-46502 was published Jan 28, 2022
Jsish v3.5.0 was discovered to contain a heap-use-after-free via /usr/lib/x86_64-linux-gnu... Moderate Unreviewed
CVE-2021-46503 was published Jan 28, 2022
The binary MP4Box in GPAC v1.1.0 was discovered to contain an invalid free vulnerability via the... Moderate Unreviewed
CVE-2021-46239 was published Jan 22, 2022
Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (and earlier) and 17.011.30204... Moderate Unreviewed
CVE-2021-44713 was published Jan 15, 2022
Adobe Bridge version 11.1.2 (and earlier) and version 12.0 (and earlier) are affected by an use... Moderate Unreviewed
CVE-2021-45051 was published Jan 15, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database