Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
661
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

285 advisories

Loading
Two heap-based buffer overflow vulnerabilities exist in the httpd manage_post functionality of... Critical Unreviewed
CVE-2023-35965 was published Oct 11, 2023
In eatt_l2cap_reconfig_completed of eatt_impl.h, there is a possible out of bounds write due to... Critical Unreviewed
CVE-2023-35681 was published Sep 11, 2023
Integer Overflow vulnerability in RELIC before commit 34580d840469361ba9b5f001361cad659687b9ab,... Critical Unreviewed
CVE-2023-36326 was published Sep 1, 2023
Integer Overflow vulnerability in RELIC before commit 421f2e91cf2ba42473d4d54daf24e295679e290e,... Critical Unreviewed
CVE-2023-36327 was published Sep 1, 2023
Integer Overflow vulnerability in mp_grow in libtom libtommath before commit... Critical Unreviewed
CVE-2023-36328 was published Sep 1, 2023
An integer overflow vulnerability in all UniFi Access Points and Switches, excluding the Switch... Critical Unreviewed
CVE-2023-35085 was published Aug 10, 2023
An integer overflow was addressed with improved input validation. This issue is fixed in watchOS... Critical Unreviewed
CVE-2023-36495 was published Jul 28, 2023
Libpeconv – integer overflow, before commit 75b1565 (30/11/2022). Critical Unreviewed
CVE-2023-23462 was published Jul 6, 2023
Widevine Trusted Application (TA) 5.0.0 through 5.1.1 has a drm_verify_keys total_len... Critical Unreviewed
CVE-2022-48334 was published Jun 26, 2023
Widevine Trusted Application (TA) 5.0.0 through 7.1.1 has a PRDiagParseAndStoreData integer... Critical Unreviewed
CVE-2022-48336 was published Jun 26, 2023
Widevine Trusted Application (TA) 5.0.0 through 5.1.1 has a drm_save_keys feature_name_len... Critical Unreviewed
CVE-2022-48331 was published Jun 26, 2023
Widevine Trusted Application (TA) 5.0.0 through 5.1.1 has a drm_verify_keys prefix_len... Critical Unreviewed
CVE-2022-48333 was published Jun 26, 2023
Widevine Trusted Application (TA) 5.0.0 through 7.1.1 has a PRDiagVerifyProvisioning integer... Critical Unreviewed
CVE-2022-48335 was published Jun 26, 2023
Widevine Trusted Application (TA) 5.0.0 through 5.1.1 has a drm_save_keys file_name_len integer... Critical Unreviewed
CVE-2022-48332 was published Jun 26, 2023
RenderDoc through 1.26 allows an Integer Overflow with a resultant Buffer Overflow (issue 1 of 2). Critical Unreviewed
CVE-2023-33863 was published Jun 7, 2023
RenderDoc through 1.26 allows an Integer Overflow with a resultant Buffer Overflow (issue 2 of 2). Critical Unreviewed
CVE-2023-33864 was published Jun 7, 2023
The `Toybox.Graphics.BufferedBitmap.initialize` API method in CIQ API version 2.3.0 through 4.1.7... Critical Unreviewed
CVE-2023-23298 was published May 23, 2023
Integer overflow in Skia in Google Chrome prior to 112.0.5615.137 allowed a remote attacker who... Critical Unreviewed
CVE-2023-2136 was published Apr 19, 2023
Buffer-overflow in jsdtoa.c in Artifex MuJS in versions 1.0.1 to 1.1.1. An integer overflow... Critical Unreviewed
CVE-2021-33797 was published Apr 18, 2023
Certain Lexmark devices through 2023-02-19 have an Integer Overflow. Critical Unreviewed
CVE-2023-26065 was published Apr 10, 2023
An issue was discovered in Samsung Exynos Mobile Processor and Baseband Modem Processor for... Critical Unreviewed
CVE-2023-28613 was published Apr 4, 2023
Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5... Critical Unreviewed
CVE-2023-28501 was published Mar 29, 2023
In parseTrackFragmentRun() of MPEG4Extractor.cpp, there is a possible out of bounds read due to... Critical Unreviewed
CVE-2022-20532 was published Mar 24, 2023
A vulnerability was found in SerenityOS. It has been rated as critical. Affected by this issue is... Critical Unreviewed
CVE-2021-4327 was published Mar 1, 2023
The affected products are vulnerable to an integer overflow or wraparound, which could allow an... Critical Unreviewed
CVE-2023-0754 was published Feb 24, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database