GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
1,938 advisories
Filter by severity
Memory corruption when allocating and accessing an entry in an SMEM partition.
High
Unreviewed
CVE-2024-23368
was published
Jul 1, 2024
Connected Vehicle Systems Alliance (COVESA) up to v2.18.8 wwas discovered to contain a buffer...
High
Unreviewed
CVE-2023-36321
was published
Oct 18, 2023
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: Fix buffer size...
High
Unreviewed
CVE-2024-39291
was published
Jun 24, 2024
OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable...
High
Unreviewed
CVE-2024-4640
was published
Jun 25, 2024
SM2 Decryption Buffer Overflow
Critical
CVE-2021-3711
was published
for
openssl-src
(Rust)
May 24, 2022
In Eclipse Openj9 before version 0.38.0, in the implementation of the shared cache (which is...
Critical
Unreviewed
CVE-2023-2597
was published
May 22, 2023
A vulnerability was found in libndp. This flaw allows a local malicious user to cause a buffer...
High
Unreviewed
CVE-2024-5564
was published
May 31, 2024
Actiontec WCB6200Q uh_tcp_recv_content Buffer Overflow Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2024-6142
was published
Jun 19, 2024
Actiontec WCB6200Q uh_tcp_recv_header Buffer Overflow Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2024-6143
was published
Jun 19, 2024
Vyper's `_abi_decode` vulnerable to Memory Overflow
Low
CVE-2024-26149
was published
for
vyper
(pip)
Feb 26, 2024
NVIDIA vGPU software for Linux contains a vulnerability in the Virtual GPU Manager, where the...
High
Unreviewed
CVE-2024-0099
was published
Jun 14, 2024
CWE-120: Buffer Copy without Checking Size of Input (‘Classic Buffer Overflow’) vulnerability...
Moderate
Unreviewed
CVE-2024-37040
was published
Jun 12, 2024
strongSwan before 5.9.12 has a buffer overflow and possible unauthenticated remote code execution...
Critical
Unreviewed
CVE-2023-41913
was published
Dec 7, 2023
A vulnerability regarding buffer copy without checking the size of input ('Classic Buffer...
Moderate
Unreviewed
CVE-2024-5463
was published
Jun 4, 2024
In the Linux kernel, the following vulnerability has been resolved:
ksmbd: fix potencial out-of...
High
Unreviewed
CVE-2024-26952
was published
May 1, 2024
Memory corruption in Hypervisor when platform information mentioned is not aligned.
Critical
Unreviewed
CVE-2023-43556
was published
Jun 3, 2024
Memory corruption in TZ Secure OS while Tunnel Invoke Manager initialization.
Critical
Unreviewed
CVE-2023-43538
was published
Jun 3, 2024
Memory corruption while copying a keyblob`s material when the key material`s size is not...
High
Unreviewed
CVE-2023-43542
was published
Jun 3, 2024
rockhopper Buffer Overflow vulnerability
Moderate
CVE-2022-4969
was published
for
rockhopper
(pip)
May 28, 2024
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS...
High
Unreviewed
CVE-2021-30666
was published
May 24, 2022
A vulnerability has been identified in Cerberus PRO EN Engineering Tool (All versions < IP8),...
Critical
Unreviewed
CVE-2024-22039
was published
Mar 12, 2024
A buffer copy without checking size of input vulnerability has been reported to affect several...
High
Unreviewed
CVE-2024-27130
was published
May 21, 2024
A buffer copy without checking size of input vulnerability has been reported to affect several...
Moderate
Unreviewed
CVE-2024-27128
was published
May 21, 2024
A buffer copy without checking size of input vulnerability has been reported to affect several...
Moderate
Unreviewed
CVE-2024-27129
was published
May 21, 2024
The buffer overflow vulnerability in the DX3300-T1 firmware version V5.50(ABVY.4)C0 could allow...
Moderate
Unreviewed
CVE-2024-0816
was published
May 21, 2024
ProTip!
Advisories are also available from the
GraphQL API