Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,605
Erlang
29
GitHub Actions
16
Go
1,697
Maven
4,936
npm
3,466
NuGet
601
pip
2,975
Pub
10
RubyGems
826
Rust
767
Swift
34
Unreviewed advisories
All unreviewed
5,000+

1,710 advisories

Out of bounds write in firmware for some Intel(R) FPGA products before version 2.9.0 may allow... Moderate Unreviewed
CVE-2023-49614 was published May 16, 2024
A vulnerability in the XML service of Cisco IP Phone firmware could allow an unauthenticated,... Moderate Unreviewed
CVE-2024-20357 was published May 1, 2024
An out of bounds write vulnerability in the AMD Radeon™ user mode driver for DirectX® 11 could... Moderate Unreviewed
CVE-2024-21972 was published Apr 23, 2024
An out of bounds write vulnerability in the AMD Radeon™ user mode driver for DirectX® 11 could... Moderate Unreviewed
CVE-2024-21979 was published Apr 23, 2024
Server communication with a controller can lead to remote code execution using a specially... Moderate Unreviewed
CVE-2023-5406 was published Apr 17, 2024
Server information leak for the CDA Server process memory can occur when an error is generated in... Moderate Unreviewed
CVE-2023-5405 was published Apr 17, 2024
Dell BIOS contains an Out-of-Bounds Write vulnerability. A local authenticated malicious user... Moderate Unreviewed
CVE-2024-22448 was published Apr 10, 2024
A potential memory leakage vulnerability was reported in some Lenovo Notebook products that may... Moderate Unreviewed
CVE-2023-5912 was published Apr 5, 2024
A Out-of-bounds Write issue affecting the v2_sdk_service running on a set of DJI drone devices on... Moderate Unreviewed
CVE-2023-51454 was published Apr 2, 2024
in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution through... Moderate Unreviewed
CVE-2024-24581 was published Apr 2, 2024
Apache Commons Configuration: StackOverflowError calling ListDelimiterHandler.flatten(Object, int) with a cyclical object tree Moderate
CVE-2024-29133 was published for org.apache.commons:commons-configuration2 (Maven) Mar 21, 2024
oscerd
Apache Commons Configuration: StackOverflowError adding property in AbstractListDelimiterHandler.flattenIterator() Moderate
CVE-2024-29131 was published for org.apache.commons:commons-configuration2 (Maven) Mar 21, 2024
oscerd
Heap Buffer Overflow vulnerability in qpdf 11.9.0 allows attackers to crash the application via... Moderate Unreviewed
CVE-2024-24246 was published Feb 29, 2024
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Wrap the tx... Moderate Unreviewed
CVE-2021-46931 was published Feb 27, 2024
A flaw was found in Indent. This issue may allow a local user to use a specially-crafted file to... Moderate Unreviewed
CVE-2024-0911 was published Feb 6, 2024
A flaw was found in the GNU coreutils "split" program. A heap overflow with user-controlled data... Moderate Unreviewed
CVE-2024-0684 was published Feb 6, 2024
Memory corruption in Audio while calling START command on host voice PCM multiple times for the... Moderate Unreviewed
CVE-2023-33067 was published Feb 6, 2024
Memory corruption in Core when updating rollback version for TA and OTA feature is enabled. Moderate Unreviewed
CVE-2023-33076 was published Feb 6, 2024
Out out bounds Write vulnerabilities in svc1td_vld_elh of libsthmbc.so prior to SMR Feb-2024... Moderate Unreviewed
CVE-2024-20818 was published Feb 6, 2024
Out out bounds Write vulnerabilities in svc1td_vld_plh_ap of libsthmbc.so prior to SMR Feb-2024... Moderate Unreviewed
CVE-2024-20819 was published Feb 6, 2024
Out out bounds Write vulnerabilities in svc1td_vld_slh of libsthmbc.so prior to SMR Feb-2024... Moderate Unreviewed
CVE-2024-20817 was published Feb 6, 2024
In TVAPI, there is a possible out of bounds write due to a missing bounds check. This could lead... Moderate Unreviewed
CVE-2024-20002 was published Feb 5, 2024
In da, there is a possible out of bounds write due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2024-20006 was published Feb 5, 2024
In keyInstall, there is a possible out of bounds write due to a missing bounds check. This could... Moderate Unreviewed
CVE-2024-20013 was published Feb 5, 2024
In TVAPI, there is a possible out of bounds write due to a missing bounds check. This could lead... Moderate Unreviewed
CVE-2024-20001 was published Feb 5, 2024
ProTip! Advisories are also available from the GraphQL API