Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,343
Erlang
31
GitHub Actions
22
Go
2,107
Maven
5,000+
npm
3,764
NuGet
679
pip
3,452
Pub
12
RubyGems
892
Rust
886
Swift
37
Unreviewed advisories
All unreviewed
5,000+

1,420 advisories

Loading
Transient DOS while parsing the ML IE when a beacon with length field inside the common info of... High Unreviewed
CVE-2024-33024 was published Aug 5, 2024
Memory corruption while allocating memory in HGSL driver. High Unreviewed
CVE-2024-33022 was published Aug 5, 2024
An integer overflow in xerces-c++ 3.2.3 in BigFix Platform allows remote attackers to cause out... High Unreviewed
CVE-2023-37536 was published Oct 11, 2023
Integer overflow in exif.cpp in exiv2 library allows context-dependent attackers to execute... High Unreviewed
CVE-2007-6353 was published May 1, 2022
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: rndis: prevent... High Unreviewed
CVE-2022-48837 was published Jul 16, 2024
In CacheOpPMRExec of cache_km.c, there is a possible out of bounds write due to an integer... High Unreviewed
CVE-2024-23695 was published Jul 9, 2024
In prepare_response of lwis_periodic_io.c, there is a possible out of bounds write due to an... High Unreviewed
CVE-2024-29784 was published Jun 13, 2024
Bridge versions 14.0.4, 13.0.7, 14.1 and earlier are affected by an Integer Overflow or... High Unreviewed
CVE-2024-34139 was published Jul 9, 2024
Integer overflow in Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x... High Unreviewed
CVE-2013-2729 was published May 17, 2022
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability High Unreviewed
CVE-2024-37323 was published Jul 9, 2024
Windows Hyper-V Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38080 was published Jul 9, 2024
Windows Filtering Platform Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38034 was published Jul 9, 2024
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability High Unreviewed
CVE-2024-37336 was published Jul 9, 2024
Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38019 was published Jul 9, 2024
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21428 was published Jul 9, 2024
An integer overflow vulnerability exists in the boa updateConfigIntoFlash functionality of... High Unreviewed
CVE-2023-45742 was published Jul 8, 2024
An issue was discovered in uriparser through 0.9.7. ComposeQueryEngine in UriQuery.c has an... High Unreviewed
CVE-2024-34402 was published May 3, 2024
An Integer Overflow vulnerability in WLInfoRailService component of Ivanti Avalanche before 6.4.3... High Unreviewed
CVE-2024-23531 was published Apr 19, 2024
An issue in `coap_pdu.c` in libcoap 4.3.4 allows attackers to cause undefined behavior via a... High Unreviewed
CVE-2024-31031 was published Apr 17, 2024
Storage Spaces Controller Elevation of Privilege Vulnerability This CVE ID is unique from CVE... High Unreviewed
CVE-2021-41345 was published May 24, 2022
Integer overflow in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on... High Unreviewed
CVE-2015-8651 was published May 17, 2022
Memory corruption while invoking IOCTL call for GPU memory allocation and size param is greater... High Unreviewed
CVE-2024-23372 was published Jul 1, 2024
An integer overflow was addressed with improved input validation. This issue is fixed in tvOS 17... High Unreviewed
CVE-2024-27833 was published Jun 10, 2024
SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow (and resultant SDL_memcpy... High Unreviewed
CVE-2020-14409 was published May 24, 2022
HTTP/2 HPACK integer overflow and buffer allocation High
CVE-2023-36478 was published for org.eclipse.jetty.http2:http2-hpack (Maven) Oct 10, 2023
samalws-tob kaoudis
smichaels-tob joakime
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database