Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
21
Go
2,003
Maven
5,000+
npm
3,714
NuGet
661
pip
3,387
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,077 advisories

Loading
A vulnerability was found in libtiff due to multiple potential integer overflows in raw2tiff.c.... Moderate Unreviewed
CVE-2023-41175 was published Oct 5, 2023
An issue was discovered in MBed OS 6.16.0. During processing of HCI packets, the software... High Unreviewed
CVE-2024-48983 was published Nov 20, 2024
In IMSA_Recv_Thread and VT_IMCB_Thread of ImsaClient.cpp and VideoTelephony.c, there is a... High Unreviewed
CVE-2018-9366 was published Nov 19, 2024
In xmlMemStrdupLoc of xmlmemory.c, there is a possible out-of-bounds write due to an integer... High Unreviewed
CVE-2018-9472 was published Nov 20, 2024
In SMF_ParseMetaEvent of eas_smf.c, there is a possible integer overflow. This could lead to... High Unreviewed
CVE-2018-9348 was published Nov 19, 2024
A local user can bypass the OpenAFS PAG (Process Authentication Group) throttling mechanism in... High Unreviewed
CVE-2024-10394 was published Nov 14, 2024
Bitcoin Core before 22.0 has a CAddrMan nIdCount integer overflow and resultant assertion failure... Moderate Unreviewed
CVE-2024-52919 was published Nov 18, 2024
Bitcoin Core before 0.21.0 allows a network split that is resultant from an integer overflow ... High Unreviewed
CVE-2024-52912 was published Nov 18, 2024
Integer Overflow or Wraparound vulnerability in Cesanta Mongoose Web Server v7.14 allows an... High Unreviewed
CVE-2024-42384 was published Nov 18, 2024
A vulnerability in the Modbus preprocessor of the Snort detection engine could allow an... High Unreviewed
CVE-2022-20685 was published Nov 15, 2024
WeeChat before 4.4.2 has an integer overflow and resultant buffer overflow at core/core-string.c... Critical Unreviewed
CVE-2024-46613 was published Nov 10, 2024
Integer overflow for some Intel(R) VPL software before version 24.1.4 may allow an authenticated... Low Unreviewed
CVE-2024-21783 was published Nov 13, 2024
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix a sdiv overflow... Moderate Unreviewed
CVE-2024-49888 was published Oct 21, 2024
An issue was discovered in base/gsdevice.c in Artifex Ghostscript before 10.04.0. An integer... High Unreviewed
CVE-2024-46953 was published Nov 11, 2024
Windows Registry Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-43641 was published Nov 12, 2024
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2024-43635 was published Nov 12, 2024
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2024-43628 was published Nov 12, 2024
Windows NT OS Kernel Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-43623 was published Nov 12, 2024
In Eclipse OpenJ9 versions up to 0.47, the JNI function GetStringUTFLength may return an... Low Unreviewed
CVE-2024-10917 was published Nov 11, 2024
In the Linux kernel, the following vulnerability has been resolved: CDC-NCM: avoid overflow in... Moderate Unreviewed
CVE-2022-48938 was published Aug 22, 2024
In battery, there is a possible out of bounds read due to an integer overflow. This could lead to... Moderate Unreviewed
CVE-2024-20047 was published Apr 1, 2024
In the Linux kernel, the following vulnerability has been resolved: media: v4l2-dv-timings.c:... Moderate Unreviewed
CVE-2022-48987 was published Oct 21, 2024
GSL (GNU Scientific Library) through 2.8 has an integer signedness error in gsl_siman_solve_many... Low Unreviewed
CVE-2024-50610 was published Oct 28, 2024
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix hashtab overflow... High Unreviewed
CVE-2024-26884 was published Apr 17, 2024
In the Linux kernel, the following vulnerability has been resolved: bpf: fix overflow check in... Moderate Unreviewed
CVE-2024-43838 was published Aug 17, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database