GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
45 advisories
Filter by severity
In writeToParcel and createFromParcel of DcParamObject.java, there is a permission bypass due to...
High
Unreviewed
CVE-2017-13315
was published
Nov 19, 2024
In the Linux kernel, the following vulnerability has been resolved:
riscv, bpf: Fix out-of...
High
Unreviewed
CVE-2024-43843
was published
Aug 17, 2024
An unauthenticated remote attacker can use a malicious OPC UA client to send a crafted request to...
High
Unreviewed
CVE-2024-5000
was published
Jun 4, 2024
An Incorrect Calculation of Buffer Size vulnerability in Juniper Networks Junos OS SRX 5000...
High
Unreviewed
CVE-2024-30405
was published
Apr 12, 2024
In OpenBSD 7.4 before errata 002 and OpenBSD 7.3 before errata 019, a network buffer that had to...
High
Unreviewed
CVE-2023-52558
was published
Mar 1, 2024
In OpenBSD 7.3 before errata 016, npppd(8) could crash by a l2tp message which has an AVP ...
High
Unreviewed
CVE-2023-52557
was published
Mar 1, 2024
In the Linux kernel, the following vulnerability has been resolved:
media: staging/intel-ipu3:...
High
Unreviewed
CVE-2021-46943
was published
Feb 27, 2024
Undisclosed requests can cause the Traffic Management Microkernel (TMM) to terminate. For the...
High
Unreviewed
CVE-2024-23805
was published
Feb 14, 2024
A potential buffer overflow exists in the Bluetooth LE HCI CPC sample application in the Gecko...
High
Unreviewed
CVE-2023-6387
was published
Feb 2, 2024
Apache Guacamole 1.5.1 and older may incorrectly calculate the lengths of instruction elements...
High
Unreviewed
CVE-2023-30575
was published
Jun 7, 2023
Information disclosure in modem due to buffer over-read while processing packets from DNS server
High
Unreviewed
CVE-2022-25731
was published
Apr 13, 2023
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2022-24907
was published
Mar 28, 2023
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2022-24908
was published
Mar 28, 2023
Incorrect Calculation of Buffer Size in GitHub repository vim/vim prior to 9.0.1378.
High
Unreviewed
CVE-2023-1175
was published
Mar 4, 2023
In PHP versions prior to 7.4.33, 8.0.25 and 8.2.12, when using imageloadfont() function in gd...
High
Unreviewed
CVE-2022-31630
was published
Nov 14, 2022
Due to insufficient validation of ELF headers, an Incorrect Calculation of Buffer Size can occur...
High
Unreviewed
CVE-2021-35134
was published
Sep 3, 2022
An issue was discovered in Mbed TLS before 2.25.0 (and before 2.16.9 LTS and before 2.7.18 LTS)....
High
Unreviewed
CVE-2020-36475
was published
May 24, 2022
There is an Incorrect Calculation of Buffer Size in Huawei Smartphone.Successful exploitation of...
High
Unreviewed
CVE-2021-22392
was published
May 24, 2022
There is an Incorrect Calculation of Buffer Size Vulnerability in Huawei Smartphone.Successful...
High
Unreviewed
CVE-2021-22415
was published
May 24, 2022
There is an Incorrect Calculation of Buffer Size in Huawei Smartphone.Successful exploitation of...
High
Unreviewed
CVE-2021-22391
was published
May 24, 2022
An out-of-bounds write vulnerability exists in the JPG sof_nb_comp header processing...
High
Unreviewed
CVE-2021-21793
was published
May 24, 2022
Memory corruption due to ioctl command size was incorrectly set to the size of a pointer and not...
High
Unreviewed
CVE-2020-11240
was published
May 24, 2022
An out-of-bounds write vulnerability exists in the TIFF header count-processing functionality of...
High
Unreviewed
CVE-2021-21773
was published
May 24, 2022
An out-of-bounds write vulnerability exists in the SGI Format Buffer Size Processing...
High
Unreviewed
CVE-2021-21776
was published
May 24, 2022
An out-of-bounds write vulnerability exists in the SGI format buffer size processing...
High
Unreviewed
CVE-2021-21782
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API