GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
536 advisories
Filter by severity
Memory corruption in TZ Secure OS while Tunnel Invoke Manager initialization.
Critical
Unreviewed
CVE-2023-43538
was published
Jun 3, 2024
Memory corruption in Hypervisor when platform information mentioned is not aligned.
Critical
Unreviewed
CVE-2023-43556
was published
Jun 3, 2024
A buffer overflow vulnerability exists in all versions of sngrep since v0.4.2, due to improper...
Critical
Unreviewed
CVE-2024-3119
was published
Apr 10, 2024
A stack-buffer overflow vulnerability exists in all versions of sngrep since v1.4.1. The flaw is...
Critical
Unreviewed
CVE-2024-3120
was published
Apr 10, 2024
transpose: Buffer overflow due to integer overflow
Critical
GHSA-5gmm-6m36-r7jh
was published
for
transpose
(Rust)
Apr 5, 2024
A vulnerability has been identified in Cerberus PRO EN Engineering Tool (All versions < IP8),...
Critical
Unreviewed
CVE-2024-22039
was published
Mar 12, 2024
Memory corruption in Data Modem while verifying hello-verify message during the DTLS handshake.
Critical
Unreviewed
CVE-2023-28582
was published
Mar 4, 2024
Memory corruption in Core while processing control functions.
Critical
Unreviewed
CVE-2023-33072
was published
Feb 6, 2024
A buffer overflow vulnerability exists in Symantec Messaging Gateway versions 9.5 and before. A...
Critical
Unreviewed
CVE-2024-23614
was published
Jan 26, 2024
A buffer overflow exists in IBM Merge Healthcare eFilm Workstation license server. A remote,...
Critical
Unreviewed
CVE-2024-23621
was published
Jan 26, 2024
A buffer overflow vulnerability exists in Symantec Deployment Solution version 7.9 when parsing...
Critical
Unreviewed
CVE-2024-23613
was published
Jan 26, 2024
A buffer overflow vulnerability exists in Symantec Server Management Suite version 7.9 and before...
Critical
Unreviewed
CVE-2024-23616
was published
Jan 26, 2024
A buffer overflow vulnerability exists in Symantec Data Loss Prevention version 14.0.2 and before...
Critical
Unreviewed
CVE-2024-23617
was published
Jan 26, 2024
A buffer overflow vulnerability exists in Symantec Messaging Gateway versions 10.5 and before. A...
Critical
Unreviewed
CVE-2024-23615
was published
Jan 26, 2024
Buffer Overflow vulnerability in Mathtex v.1.05 and before allows a remote attacker to execute...
Critical
Unreviewed
CVE-2023-51885
was published
Jan 24, 2024
Buffer Overflow vulnerability in ROS2 Foxy Fitzroy ROS_VERSION=2 and ROS_PYTHON_VERSION=3 allows...
Critical
Unreviewed
CVE-2023-51199
was published
Jan 24, 2024
Buffer overflow vulnerability in the FLP module. Successful exploitation of this vulnerability...
Critical
Unreviewed
CVE-2023-52103
was published
Jan 16, 2024
uev (aka libuev) before 2.4.1 has a buffer overflow in epoll_wait if maxevents is a large number.
Critical
Unreviewed
CVE-2022-48620
was published
Jan 12, 2024
A vulnerability was found in Totolink T6 4.1.9cu.5241_B20210923. It has been classified as...
Critical
Unreviewed
CVE-2023-7221
was published
Jan 9, 2024
Memory corruption in Data Modem when a non-standard SDP body, during a VOLTE call.
Critical
Unreviewed
CVE-2023-33025
was published
Jan 2, 2024
Memory corruption in HLOS while running playready use-case.
Critical
Unreviewed
CVE-2023-33030
was published
Jan 2, 2024
Some Honor products are affected by buffer overflow vulnerability, successful exploitation could...
Critical
Unreviewed
CVE-2023-51434
was published
Dec 29, 2023
In MicroHttpServer (aka Micro HTTP Server) through a8ab029, _ParseHeader in lib/server.c allows a...
Critical
Unreviewed
CVE-2023-51771
was published
Dec 25, 2023
A vulnerability, which was classified as critical, has been found in Totolink A7100RU 7.4cu...
Critical
Unreviewed
CVE-2023-7095
was published
Dec 25, 2023
A vulnerability, which was classified as critical, was found in Totolink A7100RU 7.4cu...
Critical
Unreviewed
CVE-2023-6906
was published
Dec 20, 2023
ProTip!
Advisories are also available from the
GraphQL API