GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,632
NuGet
638
pip
3,246
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
5,450 advisories
Filter by severity
in OpenHarmony v4.1.0 and prior versions allow a local attacker arbitrary code execution in pre...
High
Unreviewed
CVE-2024-39816
was published
Sep 2, 2024
in OpenHarmony v4.1.0 and prior versions allow a local attacker arbitrary code execution in pre...
High
Unreviewed
CVE-2024-38386
was published
Sep 2, 2024
opencv-python bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863
High
GHSA-qr4w-53vh-m672
was published
for
opencv-python
(pip)
Aug 30, 2024
opencv-contrib-python bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863
High
GHSA-cxjf-x6jp-p7mc
was published
for
opencv-contrib-python
(pip)
Aug 30, 2024
opencv-python-headless bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863
High
GHSA-jh2j-j4j9-crg3
was published
for
opencv-python-headless
(pip)
Aug 30, 2024
opencv-contrib-python-headless bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863
High
GHSA-w2pj-9cgh-mq2c
was published
for
opencv-contrib-python-headless
(pip)
Aug 30, 2024
A vulnerability, which was classified as critical, has been found in Tenda A301 15.13.08.12....
High
Unreviewed
CVE-2024-6403
was published
Jun 28, 2024
A vulnerability classified as critical was found in Tenda A301 15.13.08.12. Affected by this...
High
Unreviewed
CVE-2024-6402
was published
Jun 28, 2024
NTLMSSP dissector crash in Wireshark 4.2.0 to 4.0.6 and 4.0.0 to 4.0.16 allows denial of service...
High
Unreviewed
CVE-2024-8250
was published
Aug 29, 2024
Heap buffer overflow in Skia in Google Chrome prior to 128.0.6613.113 allowed a remote attacker...
High
Unreviewed
CVE-2024-8193
was published
Aug 29, 2024
Heap buffer overflow in Skia in Google Chrome prior to 128.0.6613.113 allowed a remote attacker...
High
Unreviewed
CVE-2024-8198
was published
Aug 29, 2024
TOTOLINK AC1200 Wireless Router A3002R Firmware V1.1.1-B20200824 is vulnerable to Buffer Overflow...
High
Unreviewed
CVE-2024-34195
was published
Aug 28, 2024
Buffer Overflow vulnerability in open source exiftags v.1.01 allows a local attacker to execute...
High
Unreviewed
CVE-2024-42851
was published
Aug 27, 2024
gpac 2.3-DEV-rev921-g422b78ecf-master was discovered to contain a out of boundary write...
High
Unreviewed
CVE-2024-28318
was published
Mar 15, 2024
The WebAudio `OscillatorNode` object was susceptible to a stack buffer overflow. This could have...
High
Unreviewed
CVE-2024-0745
was published
Jan 23, 2024
Tenda AX1803 v1.0.0.1 was discovered to contain a heap overflow via the urls parameter in the...
High
Unreviewed
CVE-2023-48110
was published
Nov 20, 2023
Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the time parameter in the...
High
Unreviewed
CVE-2023-48111
was published
Nov 20, 2023
The implementation of lib9p's handling of RWALK messages was missing a bounds check needed when...
High
Unreviewed
CVE-2022-23092
was published
Feb 15, 2024
Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to...
High
Unreviewed
CVE-2024-39880
was published
Jul 10, 2024
oFono SimToolKit Heap-based Buffer Overflow Privilege Escalation Vulnerability. This...
High
Unreviewed
CVE-2024-7546
was published
Aug 6, 2024
Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to...
High
Unreviewed
CVE-2024-39883
was published
Jul 10, 2024
oFono CUSD Stack-based Buffer Overflow Code Execution Vulnerability. This vulnerability allows...
High
Unreviewed
CVE-2024-7539
was published
Aug 6, 2024
oFono CUSD AT Command Stack-based Buffer Overflow Code Execution Vulnerability. This...
High
Unreviewed
CVE-2024-7538
was published
Aug 6, 2024
Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can result in a...
High
Unreviewed
CVE-2024-39881
was published
Jul 10, 2024
A vulnerability was found in Tenda O1 1.0.0.7(10648) and classified as critical. Affected by this...
High
Unreviewed
CVE-2024-8227
was published
Aug 28, 2024
ProTip!
Advisories are also available from the
GraphQL API