Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

45 advisories

Loading
Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-49093 was published Dec 12, 2024
The Wallet for WooCommerce plugin for WordPress is vulnerable to incorrect conversion between... Moderate Unreviewed
CVE-2024-7747 was published Nov 28, 2024
DHCP Server Service Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38044 was published Jul 9, 2024
A vulnerability has been identified in SIPLUS TIM 1531 IRC (6AG1543-1MX00-7XE0) (All versions <... Moderate Unreviewed
CVE-2022-40225 was published Jun 11, 2024
Microsoft ODBC Driver Remote Code Execution Vulnerability High Unreviewed
CVE-2024-26162 was published Mar 12, 2024
Incorrect code generation could have led to unexpected numeric conversions and potential... High Unreviewed
CVE-2024-1552 was published Feb 20, 2024
Dell BIOS contains a Signed to Unsigned Conversion Error vulnerability. A local authenticated... Moderate Unreviewed
CVE-2023-28063 was published Feb 6, 2024
A vulnerability in the hardware-based SSL/TLS cryptography functionality of Cisco Adaptive... High Unreviewed
CVE-2023-20006 was published Jun 28, 2023
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where sign... High Unreviewed
CVE-2023-0185 was published Apr 1, 2023
An integer conversion vulnerability exists in the SORBAx64.dll RecvPacket functionality of... Critical Unreviewed
CVE-2022-43663 was published Mar 20, 2023
Oxenstored 32->31 bit integer truncation issues Integers in Ocaml are 63 or 31 bits of signed... Moderate Unreviewed
CVE-2022-42324 was published Nov 1, 2022
An integer conversion error in Hermes bytecode generation, prior to commit... Critical Unreviewed
CVE-2022-40138 was published Oct 11, 2022
An integer coercion error was found in the openvswitch kernel module. Given a sufficiently large... High Unreviewed
CVE-2022-2639 was published Sep 2, 2022
A vulnerability was found in FFmpeg 2.0. It has been classified as problematic. Affected is an... Moderate Unreviewed
CVE-2014-125012 was published Jun 19, 2022
A vulnerability was found in FFmpeg 2.0. It has been declared as problematic. Affected by this... High Unreviewed
CVE-2014-125011 was published Jun 19, 2022
An information disclosure vulnerability exists in the /proc/pid/syscall functionality of Linux... Moderate Unreviewed
CVE-2020-28588 was published May 24, 2022
An exploitable signed conversion vulnerability exists in the TextMaker document parsing... High Unreviewed
CVE-2020-13545 was published May 24, 2022
An exploitable sign extension vulnerability exists in the TextMaker document parsing... High Unreviewed
CVE-2020-13544 was published May 24, 2022
An issue was discovered in OpenPOWER 2.6 firmware. unpack_timestamp() calls le32_to_cpu() for... Critical Unreviewed
CVE-2021-36357 was published May 24, 2022
An exploitable integer truncation vulnerability exists within the MPEG-4 decoding functionality... High Unreviewed
CVE-2021-21860 was published May 24, 2022
An exploitable integer truncation vulnerability exists within the MPEG-4 decoding functionality... High Unreviewed
CVE-2021-21861 was published May 24, 2022
Trend Micro Password Manager (Consumer) version 5.0.0.1217 and below is vulnerable to an Integer... High Unreviewed
CVE-2021-32461 was published May 24, 2022
Due to unexpected data type conversions, a use-after-free could have occurred when interacting... High Unreviewed
CVE-2021-23997 was published May 24, 2022
Windows MSHTML Platform Remote Code Execution Vulnerability High Unreviewed
CVE-2021-33742 was published May 24, 2022
An issue was discovered in GNOME GLib before 2.66.7 and 2.67.x before 2.67.4. If... High Unreviewed
CVE-2021-27218 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database