Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,631
NuGet
638
pip
3,246
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

99 advisories

Loading
A vulnerability has been identified in OpenPCS 7 V8.1 (All versions), OpenPCS 7 V8.2 (All... High Unreviewed
CVE-2019-19282 was published May 24, 2022
An out-of-bounds memory access flaw was found in the Linux kernel Intel’s iSMT SMBus host... Moderate Unreviewed
CVE-2022-2873 was published Aug 23, 2022
In PHP 8.0.X before 8.0.28, 8.1.X before 8.1.16 and 8.2.X before 8.2.3, core path resolution... Critical Unreviewed
CVE-2023-0568 was published Feb 16, 2023
Incorrect buffer size in crossbeam-channel Moderate
CVE-2020-35904 was published for crossbeam-channel (Rust) Aug 25, 2021
An improperly performed length calculation on a buffer in PlaintextRecordLayer could lead to an... Moderate Unreviewed
CVE-2019-3560 was published May 24, 2022
Incorrect Calculation of Buffer Size in GitHub repository vim/vim prior to 9.0.1378. High Unreviewed
CVE-2023-1175 was published Mar 4, 2023
Apache Hadoop heap overflow before v2.10.2, v3.2.3, v3.3.2 Critical
CVE-2021-37404 was published for org.apache.hadoop:hadoop-common (Maven) Jun 14, 2022
An out-of-bounds write vulnerability exists in the TIFF header count-processing functionality of... High Unreviewed
CVE-2021-21773 was published May 24, 2022
In throttling, there is a possible out of bounds write due to an incorrect calculation of buffer... Moderate Unreviewed
CVE-2022-32624 was published Dec 5, 2022
In versions of FreeBSD 12.4-RELEASE prior to 12.4-RELEASE-p7 and FreeBSD 13.2-RELEASE prior to 13... Critical Unreviewed
CVE-2023-5941 was published Nov 8, 2023
Microsoft Defender Remote Code Execution Vulnerability High Unreviewed
CVE-2021-1647 was published May 24, 2022
Heap overflow in FTP daemon in Solaris 8 allows remote attackers to execute arbitrary commands by... High Unreviewed
CVE-2001-0249 was published Apr 30, 2022
FTP service in IIS 5.0 and earlier allows remote attackers to cause a denial of service via a... Moderate Unreviewed
CVE-2001-0334 was published Apr 30, 2022
Buffer overflow in extproc in Oracle 10g allows remote attackers to execute arbitrary code via... High Unreviewed
CVE-2004-1363 was published Apr 29, 2022
A potential buffer overflow exists in the Bluetooth LE HCI CPC sample application in the Gecko... High Unreviewed
CVE-2023-6387 was published Feb 2, 2024
A buffer overflow exists in IBM Merge Healthcare eFilm Workstation license server. A remote,... Critical Unreviewed
CVE-2024-23621 was published Jan 26, 2024
A stack-based buffer overflow exists in IBM Merge Healthcare eFilm Workstation license server. A... Critical Unreviewed
CVE-2024-23622 was published Jan 26, 2024
Sudo before 1.6.6 contains an off-by-one error that can result in a heap-based buffer overflow... High Unreviewed
CVE-2002-0184 was published Apr 30, 2022
Multiple buffer overflows in Cyrus SASL library 2.1.9 and earlier allow remote attackers to cause... High Unreviewed
CVE-2002-1347 was published Apr 30, 2022
Buffer overflow in the get_tag function in mod_include for Apache 1.3.x to 1.3.32 allows local... Moderate Unreviewed
CVE-2004-0940 was published Apr 29, 2022
Multiple stack-based buffer overflows in libcURL and cURL 7.12.1, and possibly other versions,... Moderate Unreviewed
CVE-2005-0490 was published May 1, 2022
Buffer overflow in FTP server in HPUX 11 allows remote attackers to execute arbitrary commands by... High Unreviewed
CVE-2001-0248 was published Apr 30, 2022
The init_request_info function in sapi/cgi/cgi_main.c in PHP before 5.2.6 does not properly... High Unreviewed
CVE-2008-0599 was published May 1, 2022
Buffer overflow in the AIM and ICQ module in Gaim before 1.5.0 allows remote attackers to cause a... High Unreviewed
CVE-2005-2103 was published May 1, 2022
Buffer overflow in defang in libhttpd.c for thttpd 2.21 to 2.23b1 allows remote attackers to... High Unreviewed
CVE-2003-0899 was published Apr 29, 2022
ProTip! Advisories are also available from the GraphQL API