GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,869
Erlang
29
GitHub Actions
16
Go
1,717
Maven
4,951
npm
3,480
NuGet
605
pip
3,026
Pub
10
RubyGems
832
Rust
777
Swift
34
Unreviewed advisories
All unreviewed
5,000+
1,710 advisories
Filter by severity
A heap-buffer-overflow was discovered in BusyBox v.1.36.1 in the next_token function at awk.c:1159.
Moderate
Unreviewed
CVE-2023-42366
was published
Nov 28, 2023
An issue was discovered in ClickHouse before 22.9.1.2603. An authenticated user (with the ability...
Moderate
Unreviewed
CVE-2022-44011
was published
Nov 23, 2023
An arbitrary file write vulnerability exists where an authenticated, remote attacker with...
Moderate
Unreviewed
CVE-2023-6062
was published
Nov 20, 2023
An arbitrary file write vulnerability exists where an authenticated attacker with privileges on...
Moderate
Unreviewed
CVE-2023-6178
was published
Nov 20, 2023
Out-of-bounds write in some Intel(R) Arc(TM) & Iris(R) Xe Graphics - WHQL - Windows drivers...
Moderate
Unreviewed
CVE-2023-28401
was published
Nov 14, 2023
Out-of-bounds write in some Intel(R) Arc(TM) & Iris(R) Xe Graphics - WHQL - Windows drivers...
Moderate
Unreviewed
CVE-2023-25952
was published
Nov 14, 2023
Out-of-bounds write in firmware for some Intel(R) FPGA products before version 2.8.1 may allow a...
Moderate
Unreviewed
CVE-2023-22327
was published
Nov 14, 2023
In modem CCCI, there is a possible out of bounds write due to a missing bounds check. This could...
Moderate
Unreviewed
CVE-2023-32840
was published
Nov 6, 2023
In dpe, there is a possible out of bounds write due to a missing valid range checking. This could...
Moderate
Unreviewed
CVE-2023-32838
was published
Nov 6, 2023
In dpe, there is a possible out of bounds write due to a missing valid range checking. This could...
Moderate
Unreviewed
CVE-2023-32839
was published
Nov 6, 2023
In display, there is a possible out of bounds write due to an integer overflow. This could lead...
Moderate
Unreviewed
CVE-2023-32836
was published
Nov 6, 2023
In International Color Consortium DemoIccMAX 79ecb74, a CIccXmlArrayType:::ParseText function ...
Moderate
Unreviewed
CVE-2023-47249
was published
Nov 5, 2023
A vulnerability was found in PHP where setting the environment variable PHP_CLI_SERVER_WORKERS to...
Moderate
Unreviewed
CVE-2022-4900
was published
Nov 2, 2023
A heap out-of-bounds read flaw was found in builtin.c in the gawk package. This issue may lead to...
Moderate
Unreviewed
CVE-2023-3164
was published
Nov 2, 2023
A vulnerability in the CDP processing feature of Cisco ISE could allow an unauthenticated,...
Moderate
Unreviewed
CVE-2023-20213
was published
Nov 1, 2023
GPAC 2.3-DEV-rev605-gfc9e29089-master contains a heap-buffer-overflow in ffdmx_parse_side_data ...
Moderate
Unreviewed
CVE-2023-46931
was published
Nov 1, 2023
GPAC 2.3-DEV-rev605-gfc9e29089-master contains a heap-buffer-overflow in gf_isom_use_compact_size...
Moderate
Unreviewed
CVE-2023-46927
was published
Nov 1, 2023
In gnss service, there is a possible out of bounds write due to a missing bounds check. This...
Moderate
Unreviewed
CVE-2023-42750
was published
Nov 1, 2023
In faceid service, there is a possible out of bounds write due to a missing bounds check. This...
Moderate
Unreviewed
CVE-2023-42653
was published
Nov 1, 2023
In wifi service, there is a possible out of bounds write due to a missing bounds check. This...
Moderate
Unreviewed
CVE-2022-48455
was published
Nov 1, 2023
In sensor driver, there is a possible out of bounds write due to a missing bounds check. This...
Moderate
Unreviewed
CVE-2022-48461
was published
Nov 1, 2023
In wifi service, there is a possible out of bounds write due to a missing bounds check. This...
Moderate
Unreviewed
CVE-2022-48454
was published
Nov 1, 2023
In camera driver, there is a possible out of bounds write due to a incorrect bounds check. This...
Moderate
Unreviewed
CVE-2022-48456
was published
Nov 1, 2023
In Whitechapel, there is a possible out of bounds read due to memory corruption. This could lead...
Moderate
Unreviewed
CVE-2023-21385
was published
Oct 30, 2023
In Bluetooth, there is a possible out of bounds write due to improper input validation. This...
Moderate
Unreviewed
CVE-2023-21360
was published
Oct 30, 2023
ProTip!
Advisories are also available from the
GraphQL API