Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,946
Erlang
29
GitHub Actions
16
Go
1,734
Maven
4,963
npm
3,494
NuGet
607
pip
3,059
Pub
10
RubyGems
832
Rust
779
Swift
34
Unreviewed advisories
All unreviewed
5,000+

140 advisories

Stack-based Buffer Overflow vulnerability in ZkTeco-based OEM devices allows, in some cases, the... Critical Unreviewed
CVE-2023-3943 was published May 21, 2024
A buffer overflow vulnerability has been identified in PostScript interpreter in various Lexmark... Critical Unreviewed
CVE-2023-50734 was published Feb 28, 2024
A vulnerability classified as critical has been found in Totolink LR1200GB 9.1.0u.6619_B20230130... Critical Unreviewed
CVE-2024-1783 was published Feb 23, 2024
NVIDIA DGX A100 BMC contains a vulnerability in the host KVM daemon, where an unauthenticated... Critical Unreviewed
CVE-2023-31024 was published Jan 12, 2024
NVIDIA DGX A100 BMC contains a vulnerability in the host KVM daemon, where an unauthenticated... Critical Unreviewed
CVE-2023-31030 was published Jan 12, 2024
NVIDIA DGX A100 baseboard management controller (BMC) contains a vulnerability in the host KVM... Critical Unreviewed
CVE-2023-31029 was published Jan 12, 2024
AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause a stack-based... Critical Unreviewed
CVE-2023-3043 was published Jan 10, 2024
AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause a stack-based buffer... Critical Unreviewed
CVE-2023-37293 was published Jan 10, 2024
A vulnerability was found in Totolink NR1800X 9.1.0u.6279_B20210910 and classified as critical.... Critical Unreviewed
CVE-2023-7220 was published Jan 9, 2024
The Parameter Zone Read and Parameter Zone Write command handlers allow performing a Stack... Critical Unreviewed
CVE-2023-33218 was published Dec 15, 2023
The handler of the retrofit validation command doesn't properly check the boundaries when... Critical Unreviewed
CVE-2023-33219 was published Dec 15, 2023
During the retrofit validation process, the firmware doesn't properly check the boundaries... Critical Unreviewed
CVE-2023-33220 was published Dec 15, 2023
Zavio CF7500, CF7300, CF7201, CF7501, CB3211, CB3212, CB5220, CB6231, B8520, B8220, and CD321 ... Critical Unreviewed
CVE-2023-45225 was published Nov 9, 2023
Zavio CF7500, CF7300, CF7201, CF7501, CB3211, CB3212, CB5220, CB6231, B8520, B8220, and CD321 ... Critical Unreviewed
CVE-2023-43755 was published Nov 9, 2023
Zavio CF7500, CF7300, CF7201, CF7501, CB3211, CB3212, CB5220, CB6231, B8520, B8220, and CD321 ... Critical Unreviewed
CVE-2023-3959 was published Nov 9, 2023
In Weintek's cMT3000 HMI Web CGI device, the cgi-bin codesys.cgi contains a stack-based... Critical Unreviewed
CVE-2023-43492 was published Oct 19, 2023
In Weintek's cMT3000 HMI Web CGI device, the cgi-bin command_wb.cgi contains a stack-based... Critical Unreviewed
CVE-2023-38584 was published Oct 19, 2023
A stack-based buffer overflow vulnerability exists in NI System Configuration that could result... Critical Unreviewed
CVE-2023-4601 was published Oct 18, 2023
A stack-based buffer overflow vulnerability exists in the httpd do_wds functionality of Yifan... Critical Unreviewed
CVE-2023-31272 was published Oct 11, 2023
A buffer overflow vulnerability exists in the httpd next_page functionality of Yifan YF325 v1... Critical Unreviewed
CVE-2023-35056 was published Oct 11, 2023
A buffer overflow vulnerability exists in the httpd next_page functionality of Yifan YF325 v1... Critical Unreviewed
CVE-2023-35055 was published Oct 11, 2023
A stack-based buffer overflow vulnerability exists in the libutils.so nvram_restore functionality... Critical Unreviewed
CVE-2023-34365 was published Oct 11, 2023
A stack-based buffer overflow vulnerability exists in the httpd manage_request functionality of... Critical Unreviewed
CVE-2023-34426 was published Oct 11, 2023
Stack-based Buffer Overflow in vulnerability HDCP trustlet prior to SMR Oct-2023 Release 1 allows... Critical Unreviewed
CVE-2023-30733 was published Oct 4, 2023
Memory corruption in WLAN Firmware while doing a memory copy of pmk cache. Critical Unreviewed
CVE-2023-33028 was published Oct 3, 2023
ProTip! Advisories are also available from the GraphQL API