Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,354
Erlang
31
GitHub Actions
22
Go
2,120
Maven
5,000+
npm
3,779
NuGet
681
pip
3,460
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,421 advisories

Loading
HTTP/2 HPACK integer overflow and buffer allocation High
CVE-2023-36478 was published for org.eclipse.jetty.http2:http2-hpack (Maven) Oct 10, 2023
samalws-tob kaoudis
smichaels-tob joakime
Microsoft Event Trace Log File Parsing Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30072 was published Jun 11, 2024
Windows Kernel Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-30064 was published Jun 11, 2024
GStreamer EXIF Metadata Parsing Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-4453 was published May 22, 2024
A flaw was found in xorg-server. A specially crafted request to RRChangeProviderProperty or... High Unreviewed
CVE-2023-6478 was published Dec 13, 2023
A vulnerability was found in libX11 due to an integer overflow within the XCreateImage() function... High Unreviewed
CVE-2023-43787 was published Oct 10, 2023
Unified Automation UaGateway Certificate Parsing Integer Overflow Denial-of-Service Vulnerability... High Unreviewed
CVE-2023-41185 was published May 3, 2024
GStreamer MXF File Parsing Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-40474 was published May 3, 2024
GIMP PSP File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2023-44443 was published May 3, 2024
GStreamer MXF File Parsing Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-40475 was published May 3, 2024
GStreamer FLAC File Parsing Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-37327 was published May 3, 2024
GStreamer RealMedia File Parsing Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-38104 was published May 3, 2024
GStreamer RealMedia File Parsing Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-38103 was published May 3, 2024
Memory corruption while using the UIM diag command to get the operators name. High Unreviewed
CVE-2023-33018 was published Dec 5, 2023
Memory Corruption in Multimedia Framework due to integer overflow when synx bind is called along... High Unreviewed
CVE-2023-21630 was published Apr 13, 2023
Memory corruption in WLAN due to integer overflow to buffer overflow in WLAN during... High Unreviewed
CVE-2022-40530 was published Mar 10, 2023
Memory corruption due to integer overflow to buffer overflow in Modem while parsing Traffic... High Unreviewed
CVE-2022-33296 was published Apr 13, 2023
Multiple integer overflow vulnerabilities exist in the LXT2 facgeometry parsing functionality of... High Unreviewed
CVE-2023-39270 was published Jan 8, 2024
Multiple integer overflow vulnerabilities exist in the VZT facgeometry parsing functionality of... High Unreviewed
CVE-2023-38621 was published Jan 8, 2024
Multiple integer overflow vulnerabilities exist in the LXT2 facgeometry parsing functionality of... High Unreviewed
CVE-2023-39275 was published Jan 8, 2024
Multiple integer overflow vulnerabilities exist in the LXT2 facgeometry parsing functionality of... High Unreviewed
CVE-2023-39274 was published Jan 8, 2024
Multiple integer overflow vulnerabilities exist in the VZT facgeometry parsing functionality of... High Unreviewed
CVE-2023-38618 was published Jan 8, 2024
Multiple integer overflow vulnerabilities exist in the FST fstReaderIterBlocks2 chain_table... High Unreviewed
CVE-2023-36916 was published Jan 8, 2024
Multiple integer overflow vulnerabilities exist in the VZT vzt_rd_block_vch_decode times parsing... High Unreviewed
CVE-2023-38650 was published Jan 8, 2024
Multiple integer overflow vulnerabilities exist in the VZT vzt_rd_block_vch_decode times parsing... High Unreviewed
CVE-2023-38651 was published Jan 8, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database