Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,958
Erlang
29
GitHub Actions
16
Go
1,745
Maven
4,971
npm
3,507
NuGet
609
pip
3,066
Pub
10
RubyGems
832
Rust
780
Swift
34
Unreviewed advisories
All unreviewed
5,000+

13 advisories

A memory corruption vulnerability has been identified in PostScript interpreter in various... Critical Unreviewed
CVE-2023-50736 was published Feb 28, 2024
An out-of-bounds write vulnerability exists in the sopen_FAMOS_read functionality of The Biosig... Critical Unreviewed
CVE-2024-23606 was published Feb 20, 2024
A stack-based buffer overflow exists in IBM Merge Healthcare eFilm Workstation license server. A... Critical Unreviewed
CVE-2024-23622 was published Jan 26, 2024
A buffer overflow exists in IBM Merge Healthcare eFilm Workstation license server. A remote,... Critical Unreviewed
CVE-2024-23621 was published Jan 26, 2024
In versions of FreeBSD 12.4-RELEASE prior to 12.4-RELEASE-p7 and FreeBSD 13.2-RELEASE prior to 13... Critical Unreviewed
CVE-2023-5941 was published Nov 8, 2023
An issue was discovered in drivers/net/ethernet/intel/igb/igb_main.c in the IGB driver in the... Critical Unreviewed
CVE-2023-45871 was published Oct 15, 2023
memory corruption in modem due to improper check while calculating size of serialized CoAP message Critical Unreviewed
CVE-2022-33211 was published Apr 13, 2023
In PHP 8.0.X before 8.0.28, 8.1.X before 8.1.16 and 8.2.X before 8.2.3, core path resolution... Critical Unreviewed
CVE-2023-0568 was published Feb 16, 2023
Apache Hadoop heap overflow before v2.10.2, v3.2.3, v3.3.2 Critical
CVE-2021-37404 was published for org.apache.hadoop:hadoop-common (Maven) Jun 14, 2022
A buffer size validation vulnerability in the overlayd service of Juniper Networks Junos OS may... Critical Unreviewed
CVE-2021-0254 was published May 24, 2022
All versions of GurumDDS improperly calculate the size to be used when allocating the buffer,... Critical Unreviewed
CVE-2021-38423 was published May 6, 2022
RTI Connext DDS Professional and Connext DDS Secure Versions 4.2x to 6.1.0 not correctly... Critical Unreviewed
CVE-2021-38435 was published May 6, 2022
Incorrect buffer size calculation in iced-x86 Critical
CVE-2021-38188 was published for iced-x86 (Rust) Aug 25, 2021
ProTip! Advisories are also available from the GraphQL API