Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

95 advisories

Loading
User controlled parameters related to SMTP notifications are not correctly validated. This can... Moderate Unreviewed
CVE-2021-31986 was published May 24, 2022
In multiple locations, there is a possible out of bounds write due to a heap buffer overflow.... Moderate Unreviewed
CVE-2024-23709 was published May 7, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2024-43587 was published Oct 18, 2024
Windows Mobile Broadband Driver Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2024-43525 was published Oct 8, 2024
Windows Mobile Broadband Driver Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2024-43523 was published Oct 8, 2024
Azure Service Fabric for Linux Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2024-43480 was published Oct 8, 2024
Windows Mobile Broadband Driver Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2024-43526 was published Oct 8, 2024
A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G,... Moderate Unreviewed
CVE-2024-20522 was published Oct 2, 2024
A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G,... Moderate Unreviewed
CVE-2024-20516 was published Oct 2, 2024
A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G,... Moderate Unreviewed
CVE-2024-20517 was published Oct 2, 2024
Bandisoft BandiView 7.05 is vulnerable to Buffer Overflow via sub_0x410d1d. The vulnerability... Moderate Unreviewed
CVE-2024-45872 was published Oct 3, 2024
A vulnerability in Cisco Unified Threat Defense (UTD) Snort Intrusion Prevention System (IPS)... Moderate Unreviewed
CVE-2024-20508 was published Sep 25, 2024
A heap overflow flaw was found in 389-ds-base. This issue leads to a denial of service when... Moderate Unreviewed
CVE-2024-1062 was published Feb 12, 2024
Giflib Project v5.2.2 is vulnerable to a heap buffer overflow via gif2rgb. Moderate Unreviewed
CVE-2024-45993 was published Sep 30, 2024
There is a buffer overflow vulnerability in ZTE MF296R. Due to insufficient validation of the SMS... Moderate Unreviewed
CVE-2022-39068 was published Sep 18, 2024
Assimp v5.4.3 is vulnerable to Buffer Overflow via the MD5Importer::LoadMD5MeshFile function. Moderate Unreviewed
CVE-2024-46632 was published Sep 26, 2024
Buffer overflow in some Zoom Workplace Apps and SDK’s may allow an authenticated user to conduct... Moderate Unreviewed
CVE-2024-27243 was published May 15, 2024
A heap-based Buffer Overflow flaw was discovered in Samba. It could allow a remote, authenticated... Moderate Unreviewed
CVE-2023-5568 was published Oct 25, 2023
Heap-based Buffer Overflow vulnerability in Samsung Open Source Escargot JavaScript engine allows... Moderate Unreviewed
CVE-2024-32671 was published Jul 29, 2024
Heap-based Buffer Overflow vulnerability in Samsung Open Source Escargot JavaScript engine allows... Moderate Unreviewed
CVE-2024-40754 was published Sep 10, 2024
Buffer overflow in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow... Moderate Unreviewed
CVE-2024-42436 was published Aug 14, 2024
Buffer overflow in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow... Moderate Unreviewed
CVE-2024-42437 was published Aug 14, 2024
An issue was discovered in Bento4 v1.6.0-641-2-g1529b83. There is a heap overflow in AP4_Dec3Atom... Moderate Unreviewed
CVE-2024-30806 was published Apr 2, 2024
Buffer overflow in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow... Moderate Unreviewed
CVE-2024-42438 was published Aug 14, 2024
Heap-based buffer overflow vulnerability in the SonicOS SSL-VPN allows an authenticated remote... Moderate Unreviewed
CVE-2024-29013 was published Jun 20, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database