GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,015
Composer 4,300
Erlang 31
GitHub Actions 21
Go 2,069
Maven 5,241
npm 3,744
NuGet 668
pip 3,429
Pub 12
RubyGems 892
Rust 877
Swift 36

Unreviewed advisories

All unreviewed 240,253

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

291 advisories

Filter by severity

Sort by

Least recently updated

An Integer-based buffer overflow vulnerability in the SonicOS via IPSec allows a remote attacker... Critical Unreviewed

CVE-2024-40765 was published Jan 9, 2025

Integer overflow vulnerability exists in SimplCommerce at commit... Critical Unreviewed

CVE-2024-50944 was published Dec 27, 2024

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability Critical Unreviewed

CVE-2024-49112 was published Dec 12, 2024

FFmpeg n6.1.1 is Integer Overflow. The vulnerability exists in the parse_options function of... Critical Unreviewed

CVE-2024-35366 was published Nov 29, 2024

nodemcu before v3.0.0-release_20240225 was discovered to contain an integer overflow via the... Critical Unreviewed

CVE-2024-36671 was published Nov 29, 2024

WeeChat before 4.4.2 has an integer overflow and resultant buffer overflow at core/core-string.c... Critical Unreviewed

CVE-2024-46613 was published Nov 10, 2024

Xlight FTP Server <3.9.4.3 has an integer overflow vulnerability in the packet parsing logic of... Critical Unreviewed

CVE-2024-46483 was published Oct 23, 2024

A vulnerability has been identified in Automation License Manager V5 (All versions), Automation... Critical Unreviewed

CVE-2024-44087 was published Sep 10, 2024

A malicious value of size in a structure of packed libnv can cause an integer overflow, leading... Critical Unreviewed

CVE-2024-45287 was published Sep 5, 2024

An issue in newlib v.4.3.0 allows an attacker to execute arbitrary code via the time unit scaling... Critical Unreviewed

CVE-2024-30949 was published Aug 20, 2024

In the vrrp_ipsets_handler handler (fglobal_parser.c) of keepalived through 2.3.1, an integer... Critical Unreviewed

CVE-2024-41184 was published Jul 18, 2024

tap-windows6 driver version 9.26 and earlier does not properly check the size data of incomming... Critical Unreviewed

CVE-2024-1305 was published Jul 8, 2024

In wl_notify_rx_mgmt_frame of wl_cfg80211.c, there is a possible out of bounds write due to an... Critical Unreviewed

CVE-2024-32913 was published Jun 13, 2024

Integer overflow in libaom internal function img_alloc_helper can lead to heap buffer overflow.... Critical Unreviewed

CVE-2024-5171 was published Jun 5, 2024

A heap-based buffer overflow vulnerability exists in the comment functionality of stb _vorbis.c... Critical Unreviewed

CVE-2023-47212 was published May 1, 2024

Integer Overflow or Wraparound vulnerability in Mitsubishi Electric Corporation MELSEC-Q Series... Critical Unreviewed

CVE-2024-0803 was published Mar 15, 2024

Integer Overflow or Wraparound vulnerability in Mitsubishi Electric Corporation MELSEC-Q Series... Critical Unreviewed

CVE-2024-1916 was published Mar 15, 2024

Integer Overflow or Wraparound vulnerability in Mitsubishi Electric Corporation MELSEC-Q Series... Critical Unreviewed

CVE-2024-1917 was published Mar 15, 2024

An integer overflow vulnerability exists in the sopen_FAMOS_read functionality of The Biosig... Critical Unreviewed

CVE-2024-21812 was published Feb 20, 2024

Integer overflow vulnerability in FFmpeg before n6.1, allows remote attackers to execute... Critical Unreviewed

CVE-2024-22862 was published Jan 27, 2024

Integer overflow vulnerability in FFmpeg before n6.1, allows remote attackers to execute... Critical Unreviewed

CVE-2024-22860 was published Jan 27, 2024

UTF32Encoding.cpp in POCO has a Poco::UTF32Encoding integer overflow and resultant stack buffer... Critical Unreviewed

CVE-2023-52389 was published Jan 27, 2024

The authentication mechanism can be bypassed by overflowing the value of the Cookie ... Critical Unreviewed

CVE-2023-49262 was published Jan 12, 2024

Memory corruption in TZ Secure OS while requesting a memory allocation from TA region. Critical Unreviewed

CVE-2023-33032 was published Jan 2, 2024

An issue was discovered in the HTTP2 implementation in Qt before 5.15.17, 6.x before 6.2.11, 6.3... Critical Unreviewed

CVE-2023-51714 was published Dec 24, 2023

Previous 1 2 3 4 5 … 11 12 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

291 advisories