GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,084
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
169 advisories
Filter by severity
Integer Underflow (Wrap or Wraparound) vulnerability in Renesas arm-trusted-firmware.
An integer...
High
Unreviewed
CVE-2024-6285
was published
Jun 24, 2024
DHCP Server Service Denial of Service Vulnerability
High
Unreviewed
CVE-2024-30070
was published
Jun 11, 2024
Sonos Era 100 SMB2 Message Handling Integer Underflow Information Disclosure Vulnerability. This...
Moderate
Unreviewed
CVE-2024-5256
was published
Jun 6, 2024
Windows DWM Core Library Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-30008
was published
May 14, 2024
Windows Hyper-V Denial of Service Vulnerability
Moderate
Unreviewed
CVE-2024-30011
was published
May 14, 2024
Exim libspf2 Integer Underflow Remote Code Execution Vulnerability. This vulnerability allows...
High
Unreviewed
CVE-2023-42118
was published
May 3, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Fix dcn35...
High
Unreviewed
CVE-2024-26913
was published
Apr 17, 2024
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-28930
was published
Apr 9, 2024
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-28933
was published
Apr 9, 2024
Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-28945
was published
Apr 9, 2024
Microsoft WDAC OLE DB Provider for SQL Server Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-26244
was published
Apr 9, 2024
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-26208
was published
Apr 9, 2024
In the Linux kernel, the following vulnerability has been resolved:
tpm: efi: Use local variable...
Moderate
Unreviewed
CVE-2021-46951
was published
Feb 27, 2024
An integer underflow vulnerability exists in the sopen_FAMOS_read functionality of The Biosig...
Critical
Unreviewed
CVE-2024-23313
was published
Feb 20, 2024
Integer underflow in WebUI in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to...
Critical
Unreviewed
CVE-2024-0808
was published
Jan 24, 2024
An out-of-bounds memory read flaw was found in receive_encrypted_standard in fs/smb/client...
High
Unreviewed
CVE-2024-0565
was published
Jan 15, 2024
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-21309
was published
Jan 9, 2024
Multiple integer underflow vulnerabilities exist in the LXT2 lxt2_rd_iter_radix shift operation...
High
Unreviewed
CVE-2023-39414
was published
Jan 8, 2024
Multiple integer underflow vulnerabilities exist in the LXT2 lxt2_rd_iter_radix shift operation...
High
Unreviewed
CVE-2023-39413
was published
Jan 8, 2024
An integer overflow vulnerability exists in the NTRIP Stream Parsing functionality of GPSd 3.25.1...
Moderate
Unreviewed
CVE-2023-43628
was published
Dec 5, 2023
Memory corruption in Audio while processing the VOC packet data from ADSP.
High
Unreviewed
CVE-2023-33059
was published
Nov 14, 2023
Videolan VLC prior to version 3.0.20 contains an Integer underflow that leads to an incorrect...
High
Unreviewed
CVE-2023-47360
was published
Nov 13, 2023
7-Zip through 22.01 on Linux allows an integer underflow and code execution via a crafted 7Z...
High
Unreviewed
CVE-2023-31102
was published
Nov 3, 2023
An integer underflow vulnerability exists in the vpnserver OvsProcessData functionality of...
High
Unreviewed
CVE-2023-22308
was published
Oct 12, 2023
gnark unsoundness in variable comparison / non-unique binary decomposition
Moderate
CVE-2023-44378
was published
for
github.com/consensys/gnark
(Go)
Oct 4, 2023
ProTip!
Advisories are also available from the
GraphQL API