GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,285
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,741
NuGet
668
pip
3,422
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
1,376 advisories
Filter by severity
CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability...
Critical
Unreviewed
CVE-2024-8938
was published
Nov 13, 2024
Memory safety bugs present in Firefox 130, Firefox ESR 128.2, and Thunderbird 128.2. Some of...
Critical
Unreviewed
CVE-2024-9402
was published
Oct 1, 2024
Memory safety bugs present in Firefox 130, Firefox ESR 115.15, Firefox ESR 128.2, and Thunderbird...
Critical
Unreviewed
CVE-2024-9401
was published
Oct 1, 2024
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Western...
Critical
Unreviewed
CVE-2024-22170
was published
Sep 27, 2024
Inappropriate implementation in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote...
Critical
Unreviewed
CVE-2024-7024
was published
Sep 24, 2024
Memory safety bugs present in Firefox 129. Some of these bugs showed evidence of memory...
Critical
Unreviewed
CVE-2024-8389
was published
Sep 3, 2024
Memory safety bugs present in Firefox 129, Firefox ESR 128.1, and Thunderbird 128.1. Some of...
Critical
Unreviewed
CVE-2024-8387
was published
Sep 3, 2024
An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12. Due to improper input...
Critical
Unreviewed
CVE-2024-45169
was published
Aug 22, 2024
In Modem, there is a possible memory corruption due to a missing bounds check. This could lead to...
Critical
Unreviewed
CVE-2024-20082
was published
Aug 14, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Avoid HDCP...
Critical
Unreviewed
CVE-2021-47348
was published
May 21, 2024
IBM Personal Communications 14.0.6 through 15.0.1 includes a Windows service that is vulnerable...
Critical
Unreviewed
CVE-2024-25029
was published
Apr 6, 2024
An issue was discovered in Elspec G5 digital fault recorder versions 1.1.4.15 and before....
Critical
Unreviewed
CVE-2024-22080
was published
Mar 20, 2024
In alac decoder, there is a possible information disclosure due to an incorrect bounds check....
Critical
Unreviewed
CVE-2024-20011
was published
Feb 5, 2024
A buffer overflow vulnerability exists in Symantec Data Loss Prevention version 14.0.2 and before...
Critical
Unreviewed
CVE-2024-23617
was published
Jan 26, 2024
A buffer overflow vulnerability exists in Symantec Messaging Gateway versions 9.5 and before. A...
Critical
Unreviewed
CVE-2024-23614
was published
Jan 26, 2024
A buffer overflow vulnerability exists in Symantec Server Management Suite version 7.9 and before...
Critical
Unreviewed
CVE-2024-23616
was published
Jan 26, 2024
A buffer overflow vulnerability exists in Symantec Messaging Gateway versions 10.5 and before. A...
Critical
Unreviewed
CVE-2024-23615
was published
Jan 26, 2024
A buffer overflow vulnerability exists in Symantec Deployment Solution version 7.9 when parsing...
Critical
Unreviewed
CVE-2024-23613
was published
Jan 26, 2024
A maliciously crafted MODEL, SLDASM, SAT or CATPART file when parsed through Autodesk AutoCAD...
Critical
Unreviewed
CVE-2023-29076
was published
Nov 23, 2023
A memory corruption vulnerability exists in the HTTP Server form boundary functionality of Weston...
Critical
Unreviewed
CVE-2023-28379
was published
Nov 14, 2023
A memory corruption vulnerability exists in the HTTP Server Host header parsing functionality of...
Critical
Unreviewed
CVE-2023-31247
was published
Nov 14, 2023
A memory corruption vulnerability exists in the HTTP Server header parsing functionality of...
Critical
Unreviewed
CVE-2023-28391
was published
Nov 14, 2023
Stack-based buffer overflow vulnerability in Easy Chat Server 3.1 version. An attacker could send...
Critical
Unreviewed
CVE-2023-4494
was published
Oct 4, 2023
Buffer overflow vulnerability in Easy Address Book Web Server 1.6 version. The exploitation of...
Critical
Unreviewed
CVE-2023-4491
was published
Oct 4, 2023
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack...
Critical
Unreviewed
CVE-2023-44023
was published
Sep 27, 2023
ProTip!
Advisories are also available from the
GraphQL API