GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,644
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
282 advisories
Filter by severity
A vulnerability has been identified in Automation License Manager V5 (All versions), Automation...
Critical
Unreviewed
CVE-2024-44087
was published
Sep 10, 2024
A malicious value of size in a structure of packed libnv can cause an integer overflow, leading...
Critical
Unreviewed
CVE-2024-45287
was published
Sep 5, 2024
An issue in newlib v.4.3.0 allows an attacker to execute arbitrary code via the time unit scaling...
Critical
Unreviewed
CVE-2024-30949
was published
Aug 20, 2024
Integer overflow in libaom internal function img_alloc_helper can lead to heap buffer overflow....
Critical
Unreviewed
CVE-2024-5171
was published
Jun 5, 2024
In the vrrp_ipsets_handler handler (fglobal_parser.c) of keepalived through 2.3.1, an integer...
Critical
Unreviewed
CVE-2024-41184
was published
Jul 18, 2024
In wl_notify_rx_mgmt_frame of wl_cfg80211.c, there is a possible out of bounds write due to an...
Critical
Unreviewed
CVE-2024-32913
was published
Jun 13, 2024
tap-windows6 driver version 9.26 and earlier does not properly
check the size data of incomming...
Critical
Unreviewed
CVE-2024-1305
was published
Jul 8, 2024
Integer overflow in Skia in Google Chrome prior to 119.0.6045.199 allowed a remote attacker who...
Critical
Unreviewed
CVE-2023-6345
was published
Nov 29, 2023
A heap-based buffer overflow vulnerability exists in the comment functionality of stb _vorbis.c...
Critical
Unreviewed
CVE-2023-47212
was published
May 1, 2024
An issue was discovered in the HTTP2 implementation in Qt before 5.15.17, 6.x before 6.2.11, 6.3...
Critical
Unreviewed
CVE-2023-51714
was published
Dec 24, 2023
Memory corruption in TZ Secure OS while requesting a memory allocation from TA region.
Critical
Unreviewed
CVE-2023-33032
was published
Jan 2, 2024
Various Lexmark products have an Integer Overflow.
Critical
Unreviewed
CVE-2019-9930
was published
May 24, 2022
Two heap-based buffer overflow vulnerabilities exist in the httpd manage_post functionality of...
Critical
Unreviewed
CVE-2023-35966
was published
Oct 11, 2023
An integer overflow in util-linux through 2.37.1 can potentially cause a buffer overflow if an...
Critical
Unreviewed
CVE-2021-37600
was published
May 24, 2022
There's a flaw in lz4. An attacker who submits a crafted file to an application linked with lz4...
Critical
Unreviewed
CVE-2021-3520
was published
May 24, 2022
Buffer-overflow in jsdtoa.c in Artifex MuJS in versions 1.0.1 to 1.1.1. An integer overflow...
Critical
Unreviewed
CVE-2021-33797
was published
Apr 18, 2023
Two heap-based buffer overflow vulnerabilities exist in the httpd manage_post functionality of...
Critical
Unreviewed
CVE-2023-35965
was published
Oct 11, 2023
Two heap-based buffer overflow vulnerabilities exist in the gwcfg_cgi_set_manage_post_data...
Critical
Unreviewed
CVE-2023-35968
was published
Oct 11, 2023
Two heap-based buffer overflow vulnerabilities exist in the gwcfg_cgi_set_manage_post_data...
Critical
Unreviewed
CVE-2023-35967
was published
Oct 11, 2023
In eatt_l2cap_reconfig_completed of eatt_impl.h, there is a possible out of bounds write due to...
Critical
Unreviewed
CVE-2023-35681
was published
Sep 11, 2023
Integer Overflow vulnerability in RELIC before commit 421f2e91cf2ba42473d4d54daf24e295679e290e,...
Critical
Unreviewed
CVE-2023-36327
was published
Sep 1, 2023
Integer Overflow vulnerability in RELIC before commit 34580d840469361ba9b5f001361cad659687b9ab,...
Critical
Unreviewed
CVE-2023-36326
was published
Sep 1, 2023
An integer overflow was addressed with improved input validation. This issue is fixed in watchOS...
Critical
Unreviewed
CVE-2023-36495
was published
Jul 28, 2023
Libpeconv – integer overflow, before commit 75b1565 (30/11/2022).
Critical
Unreviewed
CVE-2023-23462
was published
Jul 6, 2023
Widevine Trusted Application (TA) 5.0.0 through 7.1.1 has a PRDiagParseAndStoreData integer...
Critical
Unreviewed
CVE-2022-48336
was published
Jun 26, 2023
ProTip!
Advisories are also available from the
GraphQL API