GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,944
Erlang
29
GitHub Actions
16
Go
1,729
Maven
4,955
npm
3,489
NuGet
607
pip
3,056
Pub
10
RubyGems
832
Rust
778
Swift
34
Unreviewed advisories
All unreviewed
5,000+
3,879 advisories
Filter by severity
A vulnerability has been identified in JT2Go (All versions < V13.2.0.5), Teamcenter Visualization...
High
Unreviewed
CVE-2021-44014
was published
Dec 15, 2021
A vulnerability has been identified in JT Utilities (All versions < V13.1.1.0), JTTK (All...
High
Unreviewed
CVE-2021-44433
was published
Dec 15, 2021
A vulnerability has been identified in JT Utilities (All versions < V13.0.3.0), JTTK (All...
High
Unreviewed
CVE-2021-44447
was published
Dec 15, 2021
When interacting with an HTML input element's file picker dialog with webkitdirectory set, a use...
Critical
Unreviewed
CVE-2021-38504
was published
Dec 9, 2021
A use-after-free could have occured when an HTTP2 session object was released on a different...
High
Unreviewed
CVE-2021-43535
was published
Dec 9, 2021
Failure to correctly record the location of live pointers across wasm instance calls resulted in...
High
Unreviewed
CVE-2021-43539
was published
Dec 9, 2021
A use-after-free vulnerability exists when reading a DWF/DWFX file using Open Design Alliance...
High
Unreviewed
CVE-2021-44047
was published
Dec 6, 2021
Use after free in Sign-In in Google Chrome prior to 95.0.4638.69 allowed a remote attacker who...
High
Unreviewed
CVE-2021-37997
was published
Nov 24, 2021
Use after free in Web Transport in Google Chrome prior to 95.0.4638.69 allowed a remote attacker...
Critical
Unreviewed
CVE-2021-38002
was published
Nov 24, 2021
In mdlactl driver, there is a possible memory corruption due to a use after free. This could lead...
High
Unreviewed
CVE-2021-0629
was published
Nov 19, 2021
In apusys, there is a possible memory corruption due to a use after free. This could lead to...
High
Unreviewed
CVE-2021-0670
was published
Nov 19, 2021
In edma driver, there is a possible memory corruption due to a use after free. This could lead to...
Moderate
Unreviewed
CVE-2021-0656
was published
Nov 19, 2021
In ccu, there is a possible memory corruption due to a use after free. This could lead to local...
Moderate
Unreviewed
CVE-2021-0664
was published
Nov 19, 2021
In apusys, there is a possible memory corruption due to a use after free. This could lead to...
Moderate
Unreviewed
CVE-2021-0667
was published
Nov 19, 2021
Adobe Animate version 21.0.9 (and earlier) are affected by a use-after-free vulnerability in the...
High
Unreviewed
CVE-2021-42269
was published
Nov 19, 2021
A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution...
High
Unreviewed
CVE-2021-42385
was published
Nov 17, 2021
Use after free / memory leak in `CollectiveReduceV2`
High
CVE-2021-41220
was published
for
tensorflow
(pip)
Nov 10, 2021
Use after free passing `externref`s to Wasm in Wasmtime
Moderate
CVE-2021-39216
was published
for
wasmtime
(Rust)
Sep 20, 2021
Memory Safety Issue when using patch or merge on state and assign the result back to state
Moderate
CVE-2021-39228
was published
for
tremor-script
(Rust)
Sep 20, 2021
Use after free in libpulse-binding
Moderate
CVE-2018-25001
was published
for
libpulse-binding
(Rust)
Aug 30, 2021
use-after-free vulnerability in Rust array-queue
Moderate
CVE-2020-35900
was published
for
array-queue
(Rust)
Aug 25, 2021
ProTip!
Advisories are also available from the
GraphQL API