Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,974
Erlang
29
GitHub Actions
16
Go
1,762
Maven
4,984
npm
3,524
NuGet
611
pip
3,098
Pub
10
RubyGems
834
Rust
784
Swift
34
Unreviewed advisories
All unreviewed
5,000+

1,327 advisories

Loading
An integer overflow vulnerability exists in the boa updateConfigIntoFlash functionality of... High Unreviewed
CVE-2023-45742 was published Jul 8, 2024
Memory corruption while invoking IOCTL call for GPU memory allocation and size param is greater... High Unreviewed
CVE-2024-23372 was published Jul 1, 2024
Microsoft Event Trace Log File Parsing Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30072 was published Jun 11, 2024
Windows Kernel Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-30064 was published Jun 11, 2024
An integer overflow was addressed with improved input validation. This issue is fixed in tvOS 17... High Unreviewed
CVE-2024-27833 was published Jun 10, 2024
GStreamer EXIF Metadata Parsing Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-4453 was published May 22, 2024
Npgsql vulnerable to SQL Injection via Protocol Message Size Overflow High
CVE-2024-32655 was published for Npgsql (NuGet) May 9, 2024
paul-gerste-sonarsource NinoFloris
GIMP PSP File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2023-44443 was published May 3, 2024
Unified Automation UaGateway Certificate Parsing Integer Overflow Denial-of-Service Vulnerability... High Unreviewed
CVE-2023-41185 was published May 3, 2024
GStreamer MXF File Parsing Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-40475 was published May 3, 2024
GStreamer MXF File Parsing Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-40474 was published May 3, 2024
GStreamer RealMedia File Parsing Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-38103 was published May 3, 2024
GStreamer RealMedia File Parsing Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-38104 was published May 3, 2024
GStreamer FLAC File Parsing Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-37327 was published May 3, 2024
An issue was discovered in uriparser through 0.9.7. ComposeQueryEngine in UriQuery.c has an... High Unreviewed
CVE-2024-34402 was published May 3, 2024
An Integer Overflow vulnerability in WLInfoRailService component of Ivanti Avalanche before 6.4.3... High Unreviewed
CVE-2024-23531 was published Apr 19, 2024
An issue in `coap_pdu.c` in libcoap 4.3.4 allows attackers to cause undefined behavior via a... High Unreviewed
CVE-2024-31031 was published Apr 17, 2024
Animate versions 23.0.4, 24.0.1 and earlier are affected by an Integer Overflow or Wraparound... High Unreviewed
CVE-2024-20795 was published Apr 11, 2024
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-28929 was published Apr 9, 2024
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-28931 was published Apr 9, 2024
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-28936 was published Apr 9, 2024
Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-28942 was published Apr 9, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21444 was published Mar 12, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21441 was published Mar 12, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21450 was published Mar 12, 2024
ProTip! Advisories are also available from the GraphQL API