GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
43 advisories
Filter by severity
In the Linux kernel, the following vulnerability has been resolved:
riscv, bpf: Fix out-of...
High
Unreviewed
CVE-2024-43843
was published
Aug 17, 2024
Microsoft Defender Remote Code Execution Vulnerability
High
Unreviewed
CVE-2021-1647
was published
May 24, 2022
A potential buffer overflow exists in the Bluetooth LE HCI CPC sample application in the Gecko...
High
Unreviewed
CVE-2023-6387
was published
Feb 2, 2024
In OpenBSD 7.3 before errata 016, npppd(8) could crash by a l2tp message which has an AVP ...
High
Unreviewed
CVE-2023-52557
was published
Mar 1, 2024
An unauthenticated remote attacker can use a malicious OPC UA client to send a crafted request to...
High
Unreviewed
CVE-2024-5000
was published
Jun 4, 2024
An Incorrect Calculation of Buffer Size vulnerability in Juniper Networks Junos OS SRX 5000...
High
Unreviewed
CVE-2024-30405
was published
Apr 12, 2024
Information disclosure in modem due to buffer over-read while processing packets from DNS server
High
Unreviewed
CVE-2022-25731
was published
Apr 13, 2023
In the Linux kernel, the following vulnerability has been resolved:
media: staging/intel-ipu3:...
High
Unreviewed
CVE-2021-46943
was published
Feb 27, 2024
Apache Guacamole 1.5.1 and older may incorrectly calculate the lengths of instruction elements...
High
Unreviewed
CVE-2023-30575
was published
Jun 7, 2023
In PHP versions prior to 7.4.33, 8.0.25 and 8.2.12, when using imageloadfont() function in gd...
High
Unreviewed
CVE-2022-31630
was published
Nov 14, 2022
Windows Kernel Local Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2020-17087
was published
May 24, 2022
Undisclosed requests can cause the Traffic Management Microkernel (TMM) to terminate. For the...
High
Unreviewed
CVE-2024-23805
was published
Feb 14, 2024
Buffer overflow in defang in libhttpd.c for thttpd 2.21 to 2.23b1 allows remote attackers to...
High
Unreviewed
CVE-2003-0899
was published
Apr 29, 2022
Buffer overflow in the AIM and ICQ module in Gaim before 1.5.0 allows remote attackers to cause a...
High
Unreviewed
CVE-2005-2103
was published
May 1, 2022
The init_request_info function in sapi/cgi/cgi_main.c in PHP before 5.2.6 does not properly...
High
Unreviewed
CVE-2008-0599
was published
May 1, 2022
Buffer overflow in FTP server in HPUX 11 allows remote attackers to execute arbitrary commands by...
High
Unreviewed
CVE-2001-0248
was published
Apr 30, 2022
Multiple buffer overflows in Cyrus SASL library 2.1.9 and earlier allow remote attackers to cause...
High
Unreviewed
CVE-2002-1347
was published
Apr 30, 2022
Sudo before 1.6.6 contains an off-by-one error that can result in a heap-based buffer overflow...
High
Unreviewed
CVE-2002-0184
was published
Apr 30, 2022
Buffer overflow in extproc in Oracle 10g allows remote attackers to execute arbitrary code via...
High
Unreviewed
CVE-2004-1363
was published
Apr 29, 2022
Heap overflow in FTP daemon in Solaris 8 allows remote attackers to execute arbitrary commands by...
High
Unreviewed
CVE-2001-0249
was published
Apr 30, 2022
An out-of-bounds write vulnerability exists in the TIFF header count-processing functionality of...
High
Unreviewed
CVE-2021-21773
was published
May 24, 2022
Incorrect Calculation of Buffer Size in GitHub repository vim/vim prior to 9.0.1378.
High
Unreviewed
CVE-2023-1175
was published
Mar 4, 2023
A vulnerability has been identified in OpenPCS 7 V8.1 (All versions), OpenPCS 7 V8.2 (All...
High
Unreviewed
CVE-2019-19282
was published
May 24, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2022-24907
was published
Mar 28, 2023
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2022-24908
was published
Mar 28, 2023
ProTip!
Advisories are also available from the
GraphQL API