GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,958
Erlang
29
GitHub Actions
16
Go
1,745
Maven
4,972
npm
3,507
NuGet
609
pip
3,067
Pub
10
RubyGems
832
Rust
780
Swift
34
Unreviewed advisories
All unreviewed
5,000+
286 advisories
Filter by severity
A heap-based buffer overflow vulnerability exists in the comment functionality of stb _vorbis.c...
Critical
Unreviewed
CVE-2023-47212
was published
May 1, 2024
transpose: Buffer overflow due to integer overflow
Critical
GHSA-5gmm-6m36-r7jh
was published
for
transpose
(Rust)
Apr 5, 2024
Integer Overflow or Wraparound vulnerability in Mitsubishi Electric Corporation MELSEC-Q Series...
Critical
Unreviewed
CVE-2024-1916
was published
Mar 15, 2024
Integer Overflow or Wraparound vulnerability in Mitsubishi Electric Corporation MELSEC-Q Series...
Critical
Unreviewed
CVE-2024-0803
was published
Mar 15, 2024
Integer Overflow or Wraparound vulnerability in Mitsubishi Electric Corporation MELSEC-Q Series...
Critical
Unreviewed
CVE-2024-1917
was published
Mar 15, 2024
An integer overflow vulnerability exists in the sopen_FAMOS_read functionality of The Biosig...
Critical
Unreviewed
CVE-2024-21812
was published
Feb 20, 2024
Integer overflow vulnerability in FFmpeg before n6.1, allows remote attackers to execute...
Critical
Unreviewed
CVE-2024-22860
was published
Jan 27, 2024
Integer overflow vulnerability in FFmpeg before n6.1, allows remote attackers to execute...
Critical
Unreviewed
CVE-2024-22862
was published
Jan 27, 2024
UTF32Encoding.cpp in POCO has a Poco::UTF32Encoding integer overflow and resultant stack buffer...
Critical
Unreviewed
CVE-2023-52389
was published
Jan 27, 2024
Memory corruption in TZ Secure OS while requesting a memory allocation from TA region.
Critical
Unreviewed
CVE-2023-33032
was published
Jan 2, 2024
An issue was discovered in the HTTP2 implementation in Qt before 5.15.17, 6.x before 6.2.11, 6.3...
Critical
Unreviewed
CVE-2023-51714
was published
Dec 24, 2023
PlutoSVG commit 336c02997277a1888e6ccbbbe674551a0582e5c4 and before was discovered to contain an...
Critical
Unreviewed
CVE-2023-44709
was published
Dec 14, 2023
Integer overflow in Skia in Google Chrome prior to 119.0.6045.199 allowed a remote attacker who...
Critical
Unreviewed
CVE-2023-6345
was published
Nov 29, 2023
pyminizip affected by zlib's integer overflow/heap based buffer overflow vulnerability due to vulnerable dependency
Critical
CVE-2023-45853
was published
for
pyminizip
(pip)
Oct 14, 2023
Two heap-based buffer overflow vulnerabilities exist in the httpd manage_post functionality of...
Critical
Unreviewed
CVE-2023-35966
was published
Oct 11, 2023
Two heap-based buffer overflow vulnerabilities exist in the gwcfg_cgi_set_manage_post_data...
Critical
Unreviewed
CVE-2023-35968
was published
Oct 11, 2023
Two heap-based buffer overflow vulnerabilities exist in the httpd manage_post functionality of...
Critical
Unreviewed
CVE-2023-35965
was published
Oct 11, 2023
Two heap-based buffer overflow vulnerabilities exist in the gwcfg_cgi_set_manage_post_data...
Critical
Unreviewed
CVE-2023-35967
was published
Oct 11, 2023
In eatt_l2cap_reconfig_completed of eatt_impl.h, there is a possible out of bounds write due to...
Critical
Unreviewed
CVE-2023-35681
was published
Sep 11, 2023
Integer Overflow vulnerability in mp_grow in libtom libtommath before commit...
Critical
Unreviewed
CVE-2023-36328
was published
Sep 1, 2023
Integer Overflow vulnerability in RELIC before commit 34580d840469361ba9b5f001361cad659687b9ab,...
Critical
Unreviewed
CVE-2023-36326
was published
Sep 1, 2023
Integer Overflow vulnerability in RELIC before commit 421f2e91cf2ba42473d4d54daf24e295679e290e,...
Critical
Unreviewed
CVE-2023-36327
was published
Sep 1, 2023
An integer overflow vulnerability in all UniFi Access Points and Switches, excluding the Switch...
Critical
Unreviewed
CVE-2023-35085
was published
Aug 10, 2023
An integer overflow was addressed with improved input validation. This issue is fixed in watchOS...
Critical
Unreviewed
CVE-2023-36495
was published
Jul 28, 2023
Libpeconv – integer overflow, before commit 75b1565 (30/11/2022).
Critical
Unreviewed
CVE-2023-23462
was published
Jul 6, 2023
ProTip!
Advisories are also available from the
GraphQL API