GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,946
Erlang
29
GitHub Actions
16
Go
1,734
Maven
4,963
npm
3,494
NuGet
607
pip
3,059
Pub
10
RubyGems
832
Rust
779
Swift
34
Unreviewed advisories
All unreviewed
5,000+
140 advisories
Filter by severity
Stack-based Buffer Overflow vulnerability in ZkTeco-based OEM devices allows, in some cases, the...
Critical
Unreviewed
CVE-2023-3943
was published
May 21, 2024
A buffer overflow vulnerability has been identified in PostScript interpreter in various Lexmark...
Critical
Unreviewed
CVE-2023-50734
was published
Feb 28, 2024
A vulnerability classified as critical has been found in Totolink LR1200GB 9.1.0u.6619_B20230130...
Critical
Unreviewed
CVE-2024-1783
was published
Feb 23, 2024
NVIDIA DGX A100 BMC contains a vulnerability in the host KVM daemon, where an unauthenticated...
Critical
Unreviewed
CVE-2023-31024
was published
Jan 12, 2024
NVIDIA DGX A100 BMC contains a vulnerability in the host KVM daemon, where an unauthenticated...
Critical
Unreviewed
CVE-2023-31030
was published
Jan 12, 2024
NVIDIA DGX A100 baseboard management controller (BMC) contains a vulnerability in the host KVM...
Critical
Unreviewed
CVE-2023-31029
was published
Jan 12, 2024
AMI’s SPx contains
a vulnerability in the BMC where an Attacker may
cause a stack-based...
Critical
Unreviewed
CVE-2023-3043
was published
Jan 10, 2024
AMI’s SPx contains
a vulnerability in the BMC where an Attacker may cause a
stack-based buffer...
Critical
Unreviewed
CVE-2023-37293
was published
Jan 10, 2024
A vulnerability was found in Totolink NR1800X 9.1.0u.6279_B20210910 and classified as critical....
Critical
Unreviewed
CVE-2023-7220
was published
Jan 9, 2024
The Parameter Zone Read and Parameter Zone Write command handlers allow performing a Stack...
Critical
Unreviewed
CVE-2023-33218
was published
Dec 15, 2023
The handler of the retrofit validation command doesn't properly check the boundaries when...
Critical
Unreviewed
CVE-2023-33219
was published
Dec 15, 2023
During the retrofit validation process, the firmware doesn't properly check the boundaries...
Critical
Unreviewed
CVE-2023-33220
was published
Dec 15, 2023
Zavio CF7500, CF7300, CF7201, CF7501, CB3211, CB3212, CB5220,
CB6231, B8520, B8220, and CD321
...
Critical
Unreviewed
CVE-2023-45225
was published
Nov 9, 2023
Zavio CF7500, CF7300, CF7201, CF7501, CB3211, CB3212, CB5220,
CB6231, B8520, B8220, and CD321
...
Critical
Unreviewed
CVE-2023-43755
was published
Nov 9, 2023
Zavio CF7500, CF7300, CF7201, CF7501, CB3211, CB3212, CB5220,
CB6231, B8520, B8220, and CD321
...
Critical
Unreviewed
CVE-2023-3959
was published
Nov 9, 2023
In Weintek's cMT3000 HMI Web CGI device, the cgi-bin codesys.cgi contains a stack-based...
Critical
Unreviewed
CVE-2023-43492
was published
Oct 19, 2023
In Weintek's cMT3000 HMI Web CGI device, the cgi-bin command_wb.cgi contains a stack-based...
Critical
Unreviewed
CVE-2023-38584
was published
Oct 19, 2023
A stack-based buffer overflow vulnerability exists in NI System Configuration that could result...
Critical
Unreviewed
CVE-2023-4601
was published
Oct 18, 2023
A stack-based buffer overflow vulnerability exists in the httpd do_wds functionality of Yifan...
Critical
Unreviewed
CVE-2023-31272
was published
Oct 11, 2023
A buffer overflow vulnerability exists in the httpd next_page functionality of Yifan YF325 v1...
Critical
Unreviewed
CVE-2023-35056
was published
Oct 11, 2023
A buffer overflow vulnerability exists in the httpd next_page functionality of Yifan YF325 v1...
Critical
Unreviewed
CVE-2023-35055
was published
Oct 11, 2023
A stack-based buffer overflow vulnerability exists in the libutils.so nvram_restore functionality...
Critical
Unreviewed
CVE-2023-34365
was published
Oct 11, 2023
A stack-based buffer overflow vulnerability exists in the httpd manage_request functionality of...
Critical
Unreviewed
CVE-2023-34426
was published
Oct 11, 2023
Stack-based Buffer Overflow in vulnerability HDCP trustlet prior to SMR Oct-2023 Release 1 allows...
Critical
Unreviewed
CVE-2023-30733
was published
Oct 4, 2023
Memory corruption in WLAN Firmware while doing a memory copy of pmk cache.
Critical
Unreviewed
CVE-2023-33028
was published
Oct 3, 2023
ProTip!
Advisories are also available from the
GraphQL API