GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
661
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
2,078 advisories
Filter by severity
In the Linux kernel, the following vulnerability has been resolved:
mm/damon/core: avoid...
Moderate
Unreviewed
CVE-2024-50270
was published
Nov 19, 2024
A vulnerability was found in libtiff due to multiple potential integer overflows in raw2tiff.c....
Moderate
Unreviewed
CVE-2023-41175
was published
Oct 5, 2023
An issue was discovered in MBed OS 6.16.0. During processing of HCI packets, the software...
High
Unreviewed
CVE-2024-48983
was published
Nov 20, 2024
In IMSA_Recv_Thread and VT_IMCB_Thread of ImsaClient.cpp and VideoTelephony.c, there is a...
High
Unreviewed
CVE-2018-9366
was published
Nov 19, 2024
In xmlMemStrdupLoc of xmlmemory.c, there is a possible out-of-bounds write due to an integer...
High
Unreviewed
CVE-2018-9472
was published
Nov 20, 2024
In SMF_ParseMetaEvent of eas_smf.c, there is a possible integer overflow. This could lead to...
High
Unreviewed
CVE-2018-9348
was published
Nov 19, 2024
A local user can bypass the OpenAFS PAG (Process Authentication Group)
throttling mechanism in...
High
Unreviewed
CVE-2024-10394
was published
Nov 14, 2024
Bitcoin Core before 22.0 has a CAddrMan nIdCount integer overflow and resultant assertion failure...
Moderate
Unreviewed
CVE-2024-52919
was published
Nov 18, 2024
Bitcoin Core before 0.21.0 allows a network split that is resultant from an integer overflow ...
High
Unreviewed
CVE-2024-52912
was published
Nov 18, 2024
Integer Overflow or Wraparound vulnerability in Cesanta Mongoose Web Server v7.14 allows an...
High
Unreviewed
CVE-2024-42384
was published
Nov 18, 2024
A vulnerability in the Modbus preprocessor of the Snort detection engine could allow an...
High
Unreviewed
CVE-2022-20685
was published
Nov 15, 2024
WeeChat before 4.4.2 has an integer overflow and resultant buffer overflow at core/core-string.c...
Critical
Unreviewed
CVE-2024-46613
was published
Nov 10, 2024
Integer overflow for some Intel(R) VPL software before version 24.1.4 may allow an authenticated...
Low
Unreviewed
CVE-2024-21783
was published
Nov 13, 2024
In the Linux kernel, the following vulnerability has been resolved:
bpf: Fix a sdiv overflow...
Moderate
Unreviewed
CVE-2024-49888
was published
Oct 21, 2024
An issue was discovered in base/gsdevice.c in Artifex Ghostscript before 10.04.0. An integer...
High
Unreviewed
CVE-2024-46953
was published
Nov 11, 2024
Windows Registry Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-43641
was published
Nov 12, 2024
Windows Telephony Service Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43635
was published
Nov 12, 2024
Windows Telephony Service Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43628
was published
Nov 12, 2024
Windows NT OS Kernel Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-43623
was published
Nov 12, 2024
In Eclipse OpenJ9 versions up to 0.47, the JNI function GetStringUTFLength may return an...
Low
Unreviewed
CVE-2024-10917
was published
Nov 11, 2024
In the Linux kernel, the following vulnerability has been resolved:
CDC-NCM: avoid overflow in...
Moderate
Unreviewed
CVE-2022-48938
was published
Aug 22, 2024
In battery, there is a possible out of bounds read due to an integer overflow. This could lead to...
Moderate
Unreviewed
CVE-2024-20047
was published
Apr 1, 2024
In the Linux kernel, the following vulnerability has been resolved:
media: v4l2-dv-timings.c:...
Moderate
Unreviewed
CVE-2022-48987
was published
Oct 21, 2024
GSL (GNU Scientific Library) through 2.8 has an integer signedness error in gsl_siman_solve_many...
Low
Unreviewed
CVE-2024-50610
was published
Oct 28, 2024
In the Linux kernel, the following vulnerability has been resolved:
bpf: Fix hashtab overflow...
High
Unreviewed
CVE-2024-26884
was published
Apr 17, 2024
ProTip!
Advisories are also available from the
GraphQL API