GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,740
Composer 4,239
Erlang 31
GitHub Actions 21
Go 2,007
Maven 5,196
npm 3,716
NuGet 662
pip 3,388
Pub 11
RubyGems 885
Rust 851
Swift 36

Unreviewed advisories

All unreviewed 235,928

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

285 advisories

Filter by severity

Sort by

Least recently updated

A CWE-190: Integer Overflow or Wraparound vulnerability exists that could cause heap-based buffer... Critical Unreviewed

CVE-2022-2329 was published Feb 1, 2023

On Windows, Apache Portable Runtime 1.7.0 and earlier may write beyond the end of a stack based... Critical Unreviewed

CVE-2022-28331 was published Jan 31, 2023

Integer Overflow or Wraparound vulnerability in apr_base64 functions of Apache Portable Runtime... Critical Unreviewed

CVE-2022-25147 was published Jan 31, 2023

Integer Overflow or Wraparound vulnerability in apr_encode functions of Apache Portable Runtime ... Critical Unreviewed

CVE-2022-24963 was published Jan 31, 2023

A vulnerability was found in the Libksba library due to an integer overflow within the CRL parser... Critical Unreviewed

CVE-2022-3515 was published Jan 12, 2023

Integer overflow or wraparound vulnerability in CGI component in Synology Router Manager (SRM)... Critical Unreviewed

CVE-2023-0077 was published Jan 5, 2023

Libksba before 1.6.3 is prone to an integer overflow vulnerability in the CRL signature parser. Critical Unreviewed

CVE-2022-47629 was published Dec 21, 2022

Memory corruption in WLAN due to integer overflow to buffer overflow while parsing GTK frames. in... Critical Unreviewed

CVE-2022-25748 was published Oct 19, 2022

A write-what-where condition in hermes caused by an integer overflow, prior to commit... Critical Unreviewed

CVE-2022-35289 was published Oct 11, 2022

An internal reference count is held on the buffer pool, incremented every time a new buffer is... Critical Unreviewed

CVE-2021-3782 was published Sep 25, 2022

An integer overflow in WhatsApp could result in remote code execution in an established video call. Critical Unreviewed

CVE-2022-36934 was published Sep 23, 2022

Memory corruption in bluetooth due to integer overflow while processing HFP-UNIT profile in... Critical Unreviewed

CVE-2022-22105 was published Sep 17, 2022

An integer overflow in WatchGuard Firebox and XTM appliances allows an unauthenticated remote... Critical Unreviewed

CVE-2022-31789 was published Sep 7, 2022

Improper input validation in baseband prior to SMR Aug-2022 Release 1 allows attackers to cause... Critical Unreviewed

CVE-2022-33719 was published Aug 6, 2022

WolfSSH v1.4.7 was discovered to contain an integer overflow via the function... Critical Unreviewed

CVE-2022-32073 was published Jul 14, 2022

Memory corruption in bluetooth host due to integer overflow while processing BT HFP-UNIT profile... Critical Unreviewed

CVE-2022-25651 was published Jun 15, 2022

Apache HTTP Server 2.4.53 and earlier may crash or disclose information due to a read beyond... Critical Unreviewed

CVE-2022-28615 was published Jun 10, 2022

An integer overflow issue was addressed with improved input validation. This issue is fixed in... Critical Unreviewed

CVE-2022-26711 was published May 27, 2022

An integer overflow was addressed with improved input validation. This issue is fixed in Security... Critical Unreviewed

CVE-2022-26775 was published May 27, 2022

An integer overflow vulnerability in the calloc() function of the C runtime library of affected... Critical Unreviewed

CVE-2021-22156 was published May 24, 2022

An integer overflow was discovered in the CoAP library in Arm Mbed OS 5.14.0. The function... Critical Unreviewed

CVE-2019-17211 was published May 24, 2022

Hitachi JP1/IT Desktop Management 2 Agent 9 through 12 contains a remote code execution... Critical Unreviewed

CVE-2021-29644 was published May 24, 2022

Floodlight through 1.2 has an integer overflow in checkFlow in StaticFlowEntryPusherResource.java... Critical Unreviewed

CVE-2020-18684 was published May 24, 2022

A VULNERABILITY_CLASS vulnerability exists in the FEATURE functionality of Disc Soft Ltd Deamon... Critical Unreviewed

CVE-2021-21832 was published May 24, 2022

There is an Integer Overflow Vulnerability in Huawei Smartphone.Successful exploitation of this... Critical Unreviewed

CVE-2021-22388 was published May 24, 2022

Previous 1 2 3 4 5 … 11 12 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

285 advisories