Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+

1,938 advisories

Loading
Memory corruption when allocating and accessing an entry in an SMEM partition. High Unreviewed
CVE-2024-23368 was published Jul 1, 2024
Connected Vehicle Systems Alliance (COVESA) up to v2.18.8 wwas discovered to contain a buffer... High Unreviewed
CVE-2023-36321 was published Oct 18, 2023
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix buffer size... High Unreviewed
CVE-2024-39291 was published Jun 24, 2024
OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable... High Unreviewed
CVE-2024-4640 was published Jun 25, 2024
SM2 Decryption Buffer Overflow Critical
CVE-2021-3711 was published for openssl-src (Rust) May 24, 2022
another-rex
In Eclipse Openj9 before version 0.38.0, in the implementation of the shared cache (which is... Critical Unreviewed
CVE-2023-2597 was published May 22, 2023
A vulnerability was found in libndp. This flaw allows a local malicious user to cause a buffer... High Unreviewed
CVE-2024-5564 was published May 31, 2024
Actiontec WCB6200Q uh_tcp_recv_content Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-6142 was published Jun 19, 2024
Actiontec WCB6200Q uh_tcp_recv_header Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-6143 was published Jun 19, 2024
Vyper's `_abi_decode` vulnerable to Memory Overflow Low
CVE-2024-26149 was published for vyper (pip) Feb 26, 2024
minaminao-osec
NVIDIA vGPU software for Linux contains a vulnerability in the Virtual GPU Manager, where the... High Unreviewed
CVE-2024-0099 was published Jun 14, 2024
CWE-120: Buffer Copy without Checking Size of Input (‘Classic Buffer Overflow’) vulnerability... Moderate Unreviewed
CVE-2024-37040 was published Jun 12, 2024
strongSwan before 5.9.12 has a buffer overflow and possible unauthenticated remote code execution... Critical Unreviewed
CVE-2023-41913 was published Dec 7, 2023
A vulnerability regarding buffer copy without checking the size of input ('Classic Buffer... Moderate Unreviewed
CVE-2024-5463 was published Jun 4, 2024
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix potencial out-of... High Unreviewed
CVE-2024-26952 was published May 1, 2024
Memory corruption in Hypervisor when platform information mentioned is not aligned. Critical Unreviewed
CVE-2023-43556 was published Jun 3, 2024
Memory corruption in TZ Secure OS while Tunnel Invoke Manager initialization. Critical Unreviewed
CVE-2023-43538 was published Jun 3, 2024
Memory corruption while copying a keyblob`s material when the key material`s size is not... High Unreviewed
CVE-2023-43542 was published Jun 3, 2024
rockhopper Buffer Overflow vulnerability Moderate
CVE-2022-4969 was published for rockhopper (pip) May 28, 2024
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS... High Unreviewed
CVE-2021-30666 was published May 24, 2022
A vulnerability has been identified in Cerberus PRO EN Engineering Tool (All versions < IP8),... Critical Unreviewed
CVE-2024-22039 was published Mar 12, 2024
A buffer copy without checking size of input vulnerability has been reported to affect several... High Unreviewed
CVE-2024-27130 was published May 21, 2024
A buffer copy without checking size of input vulnerability has been reported to affect several... Moderate Unreviewed
CVE-2024-27128 was published May 21, 2024
A buffer copy without checking size of input vulnerability has been reported to affect several... Moderate Unreviewed
CVE-2024-27129 was published May 21, 2024
The buffer overflow vulnerability in the DX3300-T1 firmware version V5.50(ABVY.4)C0 could allow... Moderate Unreviewed
CVE-2024-0816 was published May 21, 2024
ProTip! Advisories are also available from the GraphQL API