GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,605
Erlang
29
GitHub Actions
16
Go
1,697
Maven
4,936
npm
3,466
NuGet
601
pip
2,975
Pub
10
RubyGems
826
Rust
767
Swift
34
Unreviewed advisories
All unreviewed
5,000+
1,710 advisories
Filter by severity
Out of bounds write in firmware for some Intel(R) FPGA products before version 2.9.0 may allow...
Moderate
Unreviewed
CVE-2023-49614
was published
May 16, 2024
A vulnerability in the XML service of Cisco IP Phone firmware could allow an unauthenticated,...
Moderate
Unreviewed
CVE-2024-20357
was published
May 1, 2024
An out of bounds write vulnerability in the AMD Radeon™ user mode driver for DirectX® 11 could...
Moderate
Unreviewed
CVE-2024-21972
was published
Apr 23, 2024
An out of bounds write vulnerability in the AMD Radeon™ user mode driver for DirectX® 11 could...
Moderate
Unreviewed
CVE-2024-21979
was published
Apr 23, 2024
Server communication with a controller can lead to remote code execution using a specially...
Moderate
Unreviewed
CVE-2023-5406
was published
Apr 17, 2024
Server information leak for the CDA Server process memory can occur when an error is generated in...
Moderate
Unreviewed
CVE-2023-5405
was published
Apr 17, 2024
Dell BIOS contains an Out-of-Bounds Write vulnerability. A local authenticated malicious user...
Moderate
Unreviewed
CVE-2024-22448
was published
Apr 10, 2024
A potential memory leakage vulnerability was reported in some Lenovo Notebook products that may...
Moderate
Unreviewed
CVE-2023-5912
was published
Apr 5, 2024
A Out-of-bounds Write issue affecting the v2_sdk_service running on a set of DJI drone devices on...
Moderate
Unreviewed
CVE-2023-51454
was published
Apr 2, 2024
in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution through...
Moderate
Unreviewed
CVE-2024-24581
was published
Apr 2, 2024
Apache Commons Configuration: StackOverflowError calling ListDelimiterHandler.flatten(Object, int) with a cyclical object tree
Moderate
CVE-2024-29133
was published
for
org.apache.commons:commons-configuration2
(Maven)
Mar 21, 2024
Apache Commons Configuration: StackOverflowError adding property in AbstractListDelimiterHandler.flattenIterator()
Moderate
CVE-2024-29131
was published
for
org.apache.commons:commons-configuration2
(Maven)
Mar 21, 2024
Heap Buffer Overflow vulnerability in qpdf 11.9.0 allows attackers to crash the application via...
Moderate
Unreviewed
CVE-2024-24246
was published
Feb 29, 2024
In the Linux kernel, the following vulnerability has been resolved:
net/mlx5e: Wrap the tx...
Moderate
Unreviewed
CVE-2021-46931
was published
Feb 27, 2024
A flaw was found in Indent. This issue may allow a local user to use a specially-crafted file to...
Moderate
Unreviewed
CVE-2024-0911
was published
Feb 6, 2024
A flaw was found in the GNU coreutils "split" program. A heap overflow with user-controlled data...
Moderate
Unreviewed
CVE-2024-0684
was published
Feb 6, 2024
Memory corruption in Audio while calling START command on host voice PCM multiple times for the...
Moderate
Unreviewed
CVE-2023-33067
was published
Feb 6, 2024
Memory corruption in Core when updating rollback version for TA and OTA feature is enabled.
Moderate
Unreviewed
CVE-2023-33076
was published
Feb 6, 2024
Out out bounds Write vulnerabilities in svc1td_vld_elh of libsthmbc.so prior to SMR Feb-2024...
Moderate
Unreviewed
CVE-2024-20818
was published
Feb 6, 2024
Out out bounds Write vulnerabilities in svc1td_vld_plh_ap of libsthmbc.so prior to SMR Feb-2024...
Moderate
Unreviewed
CVE-2024-20819
was published
Feb 6, 2024
Out out bounds Write vulnerabilities in svc1td_vld_slh of libsthmbc.so prior to SMR Feb-2024...
Moderate
Unreviewed
CVE-2024-20817
was published
Feb 6, 2024
In TVAPI, there is a possible out of bounds write due to a missing bounds check. This could lead...
Moderate
Unreviewed
CVE-2024-20002
was published
Feb 5, 2024
In da, there is a possible out of bounds write due to a missing bounds check. This could lead to...
Moderate
Unreviewed
CVE-2024-20006
was published
Feb 5, 2024
In keyInstall, there is a possible out of bounds write due to a missing bounds check. This could...
Moderate
Unreviewed
CVE-2024-20013
was published
Feb 5, 2024
In TVAPI, there is a possible out of bounds write due to a missing bounds check. This could lead...
Moderate
Unreviewed
CVE-2024-20001
was published
Feb 5, 2024
ProTip!
Advisories are also available from the
GraphQL API