GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
21
Go
2,003
Maven
5,000+
npm
3,714
NuGet
661
pip
3,387
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
2,180 advisories
Filter by severity
An issue was discovered in MBed OS 6.16.0. During processing of HCI packets, the software...
High
Unreviewed
CVE-2024-48983
was published
Nov 20, 2024
In xmlMemStrdupLoc of xmlmemory.c, there is a possible out-of-bounds write due to an integer...
High
Unreviewed
CVE-2018-9472
was published
Nov 20, 2024
ASA-2024-010: cosmossdk.io/math: Mismatched bit-length validation in sdk.Int and sdk.Dec can lead to panic
High
GHSA-7225-m954-23v7
was published
for
cosmossdk.io/math
(Go)
Nov 20, 2024
In IMSA_Recv_Thread and VT_IMCB_Thread of ImsaClient.cpp and VideoTelephony.c, there is a...
High
Unreviewed
CVE-2018-9366
was published
Nov 19, 2024
In SMF_ParseMetaEvent of eas_smf.c, there is a possible integer overflow. This could lead to...
High
Unreviewed
CVE-2018-9348
was published
Nov 19, 2024
Integer Overflow or Wraparound vulnerability in Cesanta Mongoose Web Server v7.14 allows an...
High
Unreviewed
CVE-2024-42384
was published
Nov 18, 2024
Bitcoin Core before 22.0 has a CAddrMan nIdCount integer overflow and resultant assertion failure...
Moderate
Unreviewed
CVE-2024-52919
was published
Nov 18, 2024
Bitcoin Core before 0.21.0 allows a network split that is resultant from an integer overflow ...
High
Unreviewed
CVE-2024-52912
was published
Nov 18, 2024
A vulnerability in the Modbus preprocessor of the Snort detection engine could allow an...
High
Unreviewed
CVE-2022-20685
was published
Nov 15, 2024
A local user can bypass the OpenAFS PAG (Process Authentication Group)
throttling mechanism in...
High
Unreviewed
CVE-2024-10394
was published
Nov 14, 2024
Integer overflow for some Intel(R) VPL software before version 24.1.4 may allow an authenticated...
Low
Unreviewed
CVE-2024-21783
was published
Nov 13, 2024
Windows Registry Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-43641
was published
Nov 12, 2024
Windows Telephony Service Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43635
was published
Nov 12, 2024
Windows Telephony Service Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43628
was published
Nov 12, 2024
Windows NT OS Kernel Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-43623
was published
Nov 12, 2024
In Eclipse OpenJ9 versions up to 0.47, the JNI function GetStringUTFLength may return an...
Low
Unreviewed
CVE-2024-10917
was published
Nov 11, 2024
An issue was discovered in base/gsdevice.c in Artifex Ghostscript before 10.04.0. An integer...
High
Unreviewed
CVE-2024-46953
was published
Nov 11, 2024
WeeChat before 4.4.2 has an integer overflow and resultant buffer overflow at core/core-string.c...
Critical
Unreviewed
CVE-2024-46613
was published
Nov 10, 2024
GSL (GNU Scientific Library) through 2.8 has an integer signedness error in gsl_siman_solve_many...
Low
Unreviewed
CVE-2024-50610
was published
Oct 28, 2024
In vring_size of external/headers/include/virtio/virtio_ring.h, there is a possible out of bounds...
High
Unreviewed
CVE-2024-47024
was published
Oct 25, 2024
In ffu_flash_pack of ffu.c, there is a possible out of bounds read due to an integer overflow....
Moderate
Unreviewed
CVE-2024-47028
was published
Oct 25, 2024
Xlight FTP Server <3.9.4.3 has an integer overflow vulnerability in the packet parsing logic of...
Critical
Unreviewed
CVE-2024-46483
was published
Oct 23, 2024
Integer Overflow in fast_ping.c in SmartDNS Release46 allows remote attackers to cause a Denial...
High
Unreviewed
CVE-2024-42643
was published
Oct 23, 2024
In the Linux kernel, the following vulnerability has been resolved:
libbpf: Handle size overflow...
High
Unreviewed
CVE-2022-49030
was published
Oct 21, 2024
In the Linux kernel, the following vulnerability has been resolved:
media: v4l2-dv-timings.c:...
Moderate
Unreviewed
CVE-2022-48987
was published
Oct 21, 2024
ProTip!
Advisories are also available from the
GraphQL API