Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+

536 advisories

Loading
Memory corruption in TZ Secure OS while Tunnel Invoke Manager initialization. Critical Unreviewed
CVE-2023-43538 was published Jun 3, 2024
Memory corruption in Hypervisor when platform information mentioned is not aligned. Critical Unreviewed
CVE-2023-43556 was published Jun 3, 2024
A buffer overflow vulnerability exists in all versions of sngrep since v0.4.2, due to improper... Critical Unreviewed
CVE-2024-3119 was published Apr 10, 2024
A stack-buffer overflow vulnerability exists in all versions of sngrep since v1.4.1. The flaw is... Critical Unreviewed
CVE-2024-3120 was published Apr 10, 2024
transpose: Buffer overflow due to integer overflow Critical
GHSA-5gmm-6m36-r7jh was published for transpose (Rust) Apr 5, 2024
A vulnerability has been identified in Cerberus PRO EN Engineering Tool (All versions < IP8),... Critical Unreviewed
CVE-2024-22039 was published Mar 12, 2024
Memory corruption in Data Modem while verifying hello-verify message during the DTLS handshake. Critical Unreviewed
CVE-2023-28582 was published Mar 4, 2024
Memory corruption in Core while processing control functions. Critical Unreviewed
CVE-2023-33072 was published Feb 6, 2024
A buffer overflow vulnerability exists in Symantec Messaging Gateway versions 9.5 and before. A... Critical Unreviewed
CVE-2024-23614 was published Jan 26, 2024
A buffer overflow exists in IBM Merge Healthcare eFilm Workstation license server. A remote,... Critical Unreviewed
CVE-2024-23621 was published Jan 26, 2024
A buffer overflow vulnerability exists in Symantec Deployment Solution version 7.9 when parsing... Critical Unreviewed
CVE-2024-23613 was published Jan 26, 2024
A buffer overflow vulnerability exists in Symantec Server Management Suite version 7.9 and before... Critical Unreviewed
CVE-2024-23616 was published Jan 26, 2024
A buffer overflow vulnerability exists in Symantec Data Loss Prevention version 14.0.2 and before... Critical Unreviewed
CVE-2024-23617 was published Jan 26, 2024
A buffer overflow vulnerability exists in Symantec Messaging Gateway versions 10.5 and before. A... Critical Unreviewed
CVE-2024-23615 was published Jan 26, 2024
Buffer Overflow vulnerability in Mathtex v.1.05 and before allows a remote attacker to execute... Critical Unreviewed
CVE-2023-51885 was published Jan 24, 2024
Buffer Overflow vulnerability in ROS2 Foxy Fitzroy ROS_VERSION=2 and ROS_PYTHON_VERSION=3 allows... Critical Unreviewed
CVE-2023-51199 was published Jan 24, 2024
Buffer overflow vulnerability in the FLP module. Successful exploitation of this vulnerability... Critical Unreviewed
CVE-2023-52103 was published Jan 16, 2024
uev (aka libuev) before 2.4.1 has a buffer overflow in epoll_wait if maxevents is a large number. Critical Unreviewed
CVE-2022-48620 was published Jan 12, 2024
A vulnerability was found in Totolink T6 4.1.9cu.5241_B20210923. It has been classified as... Critical Unreviewed
CVE-2023-7221 was published Jan 9, 2024
Memory corruption in Data Modem when a non-standard SDP body, during a VOLTE call. Critical Unreviewed
CVE-2023-33025 was published Jan 2, 2024
Memory corruption in HLOS while running playready use-case. Critical Unreviewed
CVE-2023-33030 was published Jan 2, 2024
Some Honor products are affected by buffer overflow vulnerability, successful exploitation could... Critical Unreviewed
CVE-2023-51434 was published Dec 29, 2023
In MicroHttpServer (aka Micro HTTP Server) through a8ab029, _ParseHeader in lib/server.c allows a... Critical Unreviewed
CVE-2023-51771 was published Dec 25, 2023
A vulnerability, which was classified as critical, has been found in Totolink A7100RU 7.4cu... Critical Unreviewed
CVE-2023-7095 was published Dec 25, 2023
A vulnerability, which was classified as critical, was found in Totolink A7100RU 7.4cu... Critical Unreviewed
CVE-2023-6906 was published Dec 20, 2023
ProTip! Advisories are also available from the GraphQL API