GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,974
Erlang
29
GitHub Actions
16
Go
1,762
Maven
4,984
npm
3,524
NuGet
611
pip
3,098
Pub
10
RubyGems
834
Rust
784
Swift
34
Unreviewed advisories
All unreviewed
5,000+
1,327 advisories
Filter by severity
An integer overflow vulnerability exists in the boa updateConfigIntoFlash functionality of...
High
Unreviewed
CVE-2023-45742
was published
Jul 8, 2024
Memory corruption while invoking IOCTL call for GPU memory allocation and size param is greater...
High
Unreviewed
CVE-2024-23372
was published
Jul 1, 2024
Microsoft Event Trace Log File Parsing Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-30072
was published
Jun 11, 2024
Windows Kernel Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-30064
was published
Jun 11, 2024
An integer overflow was addressed with improved input validation. This issue is fixed in tvOS 17...
High
Unreviewed
CVE-2024-27833
was published
Jun 10, 2024
GStreamer EXIF Metadata Parsing Integer Overflow Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2024-4453
was published
May 22, 2024
Npgsql vulnerable to SQL Injection via Protocol Message Size Overflow
High
CVE-2024-32655
was published
for
Npgsql
(NuGet)
May 9, 2024
GIMP PSP File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability...
High
Unreviewed
CVE-2023-44443
was published
May 3, 2024
Unified Automation UaGateway Certificate Parsing Integer Overflow Denial-of-Service Vulnerability...
High
Unreviewed
CVE-2023-41185
was published
May 3, 2024
GStreamer MXF File Parsing Integer Overflow Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2023-40475
was published
May 3, 2024
GStreamer MXF File Parsing Integer Overflow Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2023-40474
was published
May 3, 2024
GStreamer RealMedia File Parsing Integer Overflow Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2023-38103
was published
May 3, 2024
GStreamer RealMedia File Parsing Integer Overflow Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2023-38104
was published
May 3, 2024
GStreamer FLAC File Parsing Integer Overflow Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2023-37327
was published
May 3, 2024
An issue was discovered in uriparser through 0.9.7. ComposeQueryEngine in UriQuery.c has an...
High
Unreviewed
CVE-2024-34402
was published
May 3, 2024
An Integer Overflow vulnerability in WLInfoRailService component of Ivanti Avalanche before 6.4.3...
High
Unreviewed
CVE-2024-23531
was published
Apr 19, 2024
An issue in `coap_pdu.c` in libcoap 4.3.4 allows attackers to cause undefined behavior via a...
High
Unreviewed
CVE-2024-31031
was published
Apr 17, 2024
Animate versions 23.0.4, 24.0.1 and earlier are affected by an Integer Overflow or Wraparound...
High
Unreviewed
CVE-2024-20795
was published
Apr 11, 2024
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-28929
was published
Apr 9, 2024
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-28931
was published
Apr 9, 2024
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-28936
was published
Apr 9, 2024
Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-28942
was published
Apr 9, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-21444
was published
Mar 12, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-21441
was published
Mar 12, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-21450
was published
Mar 12, 2024
ProTip!
Advisories are also available from the
GraphQL API