Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,958
Erlang
29
GitHub Actions
16
Go
1,745
Maven
4,972
npm
3,507
NuGet
609
pip
3,067
Pub
10
RubyGems
832
Rust
780
Swift
34
Unreviewed advisories
All unreviewed
5,000+

20 advisories

in OpenHarmony v4.0.0 and prior versions allow a local attacker cause service crash through... Low Unreviewed
CVE-2024-3757 was published May 7, 2024
CosmWasm affected by arithmetic overflows Low
GHSA-8724-5xmm-w5xq was published for cosmwasm-std (Rust) Apr 24, 2024
During the secure boot, bl2 (the second stage of the bootloader) loops over images defined in the... Low Unreviewed
CVE-2024-1633 was published Feb 19, 2024
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause heap overflow through ... Low Unreviewed
CVE-2024-21845 was published Feb 2, 2024
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause heap overflow through ... Low Unreviewed
CVE-2024-21851 was published Feb 2, 2024
An issue was discovered in the NPU kernel driver in Samsung Exynos Mobile Processor 9820, 980,... Low Unreviewed
CVE-2023-40218 was published Sep 12, 2023
An issue was discovered in Exynos Mobile Processor 980 and 2100. An integer overflow at a buffer... Low Unreviewed
CVE-2023-40353 was published Sep 8, 2023
Integer overflow vulnerability in tool_operate.c in curl 7.65.2 via crafted value as the retry... Low Unreviewed
CVE-2020-19909 was published Aug 22, 2023
In wlan driver, there is a possible missing bounds check, This could lead to local denial of... Low Unreviewed
CVE-2022-42767 was published Dec 6, 2022
TensorFlow vulnerable to integer overflow in math ops Low
CVE-2022-36015 was published for tensorflow (pip) Sep 16, 2022
An integer overflow issue was found in the vmxnet3 NIC emulator of the QEMU for versions up to v5... Low Unreviewed
CVE-2021-20203 was published May 24, 2022
There is an issue on grub2 before version 2.06 at function read_section_as_string(). It expects a... Low Unreviewed
CVE-2020-14310 was published May 24, 2022
There is an issue with grub2 before version 2.06 while handling symlink on ext filesystems. A... Low Unreviewed
CVE-2020-14311 was published May 24, 2022
In NDEF_MsgValidate of ndef_utils.c, there is a possible out of bounds read due to an integer... Low Unreviewed
CVE-2020-0139 was published May 24, 2022
A vulnerability was found in DPDK versions 19.11 and above. A malicious container that has direct... Low Unreviewed
CVE-2020-10726 was published May 24, 2022
A vulnerability was found in DPDK versions 18.11 and above. The vhost-crypto library code is... Low Unreviewed
CVE-2020-10724 was published May 24, 2022
The alarm_timer_nsleep function in kernel/time/alarmtimer.c in the Linux kernel through 4.17.3... Low Unreviewed
CVE-2018-13053 was published May 14, 2022
Multiple integer overflows in libwebp allows attackers to have unspecified impact via unknown... Low Unreviewed
CVE-2016-9085 was published May 13, 2022
CHECK-fail due to integer overflow Low
CVE-2021-29584 was published for tensorflow (pip) May 21, 2021
CHECK-fail in AddManySparseToTensorsMap Low
CVE-2021-29523 was published for tensorflow (pip) May 21, 2021
ProTip! Advisories are also available from the GraphQL API