Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,632
NuGet
638
pip
3,246
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

5,450 advisories

Loading
in OpenHarmony v4.1.0 and prior versions allow a local attacker arbitrary code execution in pre... High Unreviewed
CVE-2024-39816 was published Sep 2, 2024
in OpenHarmony v4.1.0 and prior versions allow a local attacker arbitrary code execution in pre... High Unreviewed
CVE-2024-38386 was published Sep 2, 2024
opencv-python bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863 High
GHSA-qr4w-53vh-m672 was published for opencv-python (pip) Aug 30, 2024
opencv-contrib-python bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863 High
GHSA-cxjf-x6jp-p7mc was published for opencv-contrib-python (pip) Aug 30, 2024
opencv-python-headless bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863 High
GHSA-jh2j-j4j9-crg3 was published for opencv-python-headless (pip) Aug 30, 2024
opencv-contrib-python-headless bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863 High
GHSA-w2pj-9cgh-mq2c was published for opencv-contrib-python-headless (pip) Aug 30, 2024
A vulnerability, which was classified as critical, has been found in Tenda A301 15.13.08.12.... High Unreviewed
CVE-2024-6403 was published Jun 28, 2024
A vulnerability classified as critical was found in Tenda A301 15.13.08.12. Affected by this... High Unreviewed
CVE-2024-6402 was published Jun 28, 2024
NTLMSSP dissector crash in Wireshark 4.2.0 to 4.0.6 and 4.0.0 to 4.0.16 allows denial of service... High Unreviewed
CVE-2024-8250 was published Aug 29, 2024
Heap buffer overflow in Skia in Google Chrome prior to 128.0.6613.113 allowed a remote attacker... High Unreviewed
CVE-2024-8193 was published Aug 29, 2024
Heap buffer overflow in Skia in Google Chrome prior to 128.0.6613.113 allowed a remote attacker... High Unreviewed
CVE-2024-8198 was published Aug 29, 2024
TOTOLINK AC1200 Wireless Router A3002R Firmware V1.1.1-B20200824 is vulnerable to Buffer Overflow... High Unreviewed
CVE-2024-34195 was published Aug 28, 2024
Buffer Overflow vulnerability in open source exiftags v.1.01 allows a local attacker to execute... High Unreviewed
CVE-2024-42851 was published Aug 27, 2024
gpac 2.3-DEV-rev921-g422b78ecf-master was discovered to contain a out of boundary write... High Unreviewed
CVE-2024-28318 was published Mar 15, 2024
The WebAudio `OscillatorNode` object was susceptible to a stack buffer overflow. This could have... High Unreviewed
CVE-2024-0745 was published Jan 23, 2024
Tenda AX1803 v1.0.0.1 was discovered to contain a heap overflow via the urls parameter in the... High Unreviewed
CVE-2023-48110 was published Nov 20, 2023
Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the time parameter in the... High Unreviewed
CVE-2023-48111 was published Nov 20, 2023
The implementation of lib9p's handling of RWALK messages was missing a bounds check needed when... High Unreviewed
CVE-2022-23092 was published Feb 15, 2024
Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to... High Unreviewed
CVE-2024-39880 was published Jul 10, 2024
oFono SimToolKit Heap-based Buffer Overflow Privilege Escalation Vulnerability. This... High Unreviewed
CVE-2024-7546 was published Aug 6, 2024
Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to... High Unreviewed
CVE-2024-39883 was published Jul 10, 2024
oFono CUSD Stack-based Buffer Overflow Code Execution Vulnerability. This vulnerability allows... High Unreviewed
CVE-2024-7539 was published Aug 6, 2024
oFono CUSD AT Command Stack-based Buffer Overflow Code Execution Vulnerability. This... High Unreviewed
CVE-2024-7538 was published Aug 6, 2024
Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can result in a... High Unreviewed
CVE-2024-39881 was published Jul 10, 2024
A vulnerability was found in Tenda O1 1.0.0.7(10648) and classified as critical. Affected by this... High Unreviewed
CVE-2024-8227 was published Aug 28, 2024
ProTip! Advisories are also available from the GraphQL API