GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
519 advisories
Filter by severity
Buffer Overflow in node-weakauras-parser
Moderate
GHSA-86mr-6m89-vgj3
was published
for
node-weakauras-parser
(npm)
Sep 3, 2020
xterm through Patch 370, when Sixel support is enabled, allows attackers to trigger a buffer...
Moderate
Unreviewed
CVE-2022-24130
was published
Feb 8, 2022
Possible buffer overflow due to improper data validation of external commands sent via DIAG...
Moderate
Unreviewed
CVE-2021-30331
was published
Apr 2, 2022
A potential buffer overflow vulnerability was identified in some internal functions of Zyxel...
Moderate
Unreviewed
CVE-2022-26414
was published
Apr 12, 2022
A denial of service vulnerability was reported in Lenovo Thin Installer prior to version 1.3.0039...
Moderate
Unreviewed
CVE-2022-0636
was published
Apr 23, 2022
An exploitable buffer overflow vulnerability exists in the UPnP implementation used by the Foscam...
Moderate
Unreviewed
CVE-2017-2879
was published
May 13, 2022
Multiple buffer overflows in STLport 5.0.2 might allow local users to execute arbitrary code via ...
Moderate
Unreviewed
CVE-2006-0963
was published
May 1, 2022
Multiple buffer overflows in STLport before 5.0.3 allow remote attackers to execute arbitrary...
Moderate
Unreviewed
CVE-2007-0803
was published
May 1, 2022
The dtls1_reassemble_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0...
Moderate
Unreviewed
CVE-2014-0195
was published
May 14, 2022
Buffer Copy without Checking Size of Input in NumPy
Moderate
CVE-2021-41496
was published
for
numpy
(pip)
Feb 8, 2022
An exploitable remote code execution vulnerability exists in the iw_webs configuration parsing...
Moderate
Unreviewed
CVE-2019-5153
was published
May 24, 2022
A buffer overflow vulnerability in jetp3852_print_page() in devices/gdev3852.c of Artifex...
Moderate
Unreviewed
CVE-2020-16302
was published
May 24, 2022
A crafted NTFS image can cause heap exhaustion in ntfs_get_attribute_value in NTFS-3G through...
Moderate
Unreviewed
CVE-2022-30784
was published
May 27, 2022
Das U-Boot 2022.01 has a Buffer Overflow.
Moderate
Unreviewed
CVE-2022-30552
was published
Jun 9, 2022
Realtek USB driver has a buffer overflow vulnerability due to insufficient parameter length...
Moderate
Unreviewed
CVE-2022-21742
was published
Jun 21, 2022
Multiple CODESYS products are affected to a buffer overflow.A low privileged remote attacker may...
Moderate
Unreviewed
CVE-2022-32140
was published
Jun 25, 2022
The NFC module has a buffer overflow vulnerability. Successful exploitation of this vulnerability...
Moderate
Unreviewed
CVE-2022-34740
was published
Jul 13, 2022
The NFC module has a buffer overflow vulnerability. Successful exploitation of this vulnerability...
Moderate
Unreviewed
CVE-2022-34741
was published
Jul 13, 2022
GtkRadiant v1.6.6 was discovered to contain a buffer overflow via the component q3map2. This...
Moderate
Unreviewed
CVE-2022-32406
was published
Jul 15, 2022
Buffer overflow in Jenkins WMI Windows Agents plugin
Moderate
CVE-2022-30950
was published
for
org.jenkins-ci.plugins:windows-slaves
(Maven)
May 18, 2022
A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack...
Moderate
Unreviewed
CVE-2020-10713
was published
May 24, 2022
Buffer overflow vulnerability in function AP4_MemoryByteStream::WritePartial in mp42aac in Bento4...
Moderate
Unreviewed
CVE-2022-40438
was published
Sep 15, 2022
A vulnerability has been identified in OpenV2G (V0.9.4). The OpenV2G EXI parsing feature is...
Moderate
Unreviewed
CVE-2022-27242
was published
May 21, 2022
A buffer overflow vulnerability in Lenovo Smart Standby Driver prior to version 4.1.50.0 could...
Moderate
Unreviewed
CVE-2022-1110
was published
May 19, 2022
lmp_print_data_link_subobjs() in print-lmp.c in tcpdump before 4.9.3 lacks certain bounds checks.
Moderate
Unreviewed
CVE-2019-15166
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API