Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,852 advisories

Loading
Netatalk before 3.1.12 is vulnerable to an out of bounds write in dsi_opensess.c. This is due to... Critical Unreviewed
CVE-2018-1160 was published May 13, 2022
Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of... Critical Unreviewed
CVE-2017-14491 was published Apr 30, 2022
Out-of-bounds write in the PCX image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an... Critical Unreviewed
CVE-2024-48856 was published Jan 14, 2025
A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.5, Ivanti Policy... Critical Unreviewed
CVE-2025-0282 was published Jan 9, 2025
Memory corruption while redirecting log file to any file location with any file name. Critical Unreviewed
CVE-2024-21473 was published Apr 1, 2024
Memory corruption in Core Services while executing the command for removing a single event listener. Critical Unreviewed
CVE-2023-28578 was published Mar 4, 2024
Memory corruption in Data Modem while verifying hello-verify message during the DTLS handshake. Critical Unreviewed
CVE-2023-28582 was published Mar 4, 2024
ReadyMedia (MiniDLNA) versions from 1.1.15 up to 1.3.2 is vulnerable to Buffer Overflow. The... Critical Unreviewed
CVE-2023-33476 was published Jun 2, 2023
GibbonEdu Gibbon version 25.0.1 and before allows Arbitrary File Write because... Critical Unreviewed
CVE-2023-45878 was published Nov 14, 2023
In wlan STA FW, there is a possible out of bounds write due to improper input validation. This... Critical Unreviewed
CVE-2024-20148 was published Jan 6, 2025
In cc_SendCcImsInfoIndMsg of cc_MmConManagement.c, there is a possible out of bounds write due to... Critical Unreviewed
CVE-2024-53842 was published Jan 3, 2025
Matthias-Wandel/jhead jhead 3.06 is vulnerable to Buffer Overflow via shellescape(), jhead.c,... Critical Unreviewed
CVE-2022-28550 was published Jun 13, 2023
Inappropriate implementation in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote... Critical Unreviewed
CVE-2024-7024 was published Sep 24, 2024
The zend_string_extend function in Zend/zend_string.h in PHP through 7.1.5 does not prevent... Critical Unreviewed
CVE-2017-8923 was published May 14, 2022
vCenter Server contains an out-of-bounds write vulnerability in the implementation of the DCERPC... Critical Unreviewed
CVE-2023-34048 was published Oct 25, 2023
In sg_remove_scat of scsi/sg.c, there is a possible memory corruption due to an unusual root... Critical Unreviewed
CVE-2018-9416 was published Dec 5, 2024
In dhd_prot_flowrings_pool_release of dhd_msgbuf.c, there is a possible outcof bounds write due... Critical Unreviewed
CVE-2024-47038 was published Dec 18, 2024
In prop2cfg of btif_storage.cc, there is a possible out of bounds write due to an incorrect... Critical Unreviewed
CVE-2018-9430 was published Dec 3, 2024
Product: AndroidVersions: Android SoCAndroid ID: A-278156680 Critical Unreviewed
CVE-2021-0945 was published Jun 15, 2023
In the deserialization constructor of NanoAppFilter.java, there is a possible loss of data due to... Critical Unreviewed
CVE-2018-9471 was published Nov 20, 2024
In attp_build_read_by_type_value_cmd of att_protocol.cc , there is a possible out of bounds write... Critical Unreviewed
CVE-2024-0031 was published Feb 16, 2024
The issue was addressed with improved memory handling. This issue is fixed in watchOS 11.2,... Critical Unreviewed
CVE-2024-54534 was published Dec 12, 2024
The issue was addressed with improved bounds checks. This issue is fixed in iOS 18.1 and iPadOS... Critical Unreviewed
CVE-2024-44242 was published Dec 12, 2024
A stack-based buffer overflow in fbwifi_continue.cgi on Zyxel UTM and VPN series of gateways... Critical Unreviewed
CVE-2020-25014 was published May 24, 2022
In the Mullvad VPN client 2024.6 (Desktop), 2024.8 (iOS), and 2024.8-beta1 (Android), the... Critical Unreviewed
CVE-2024-55884 was published Dec 12, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database