Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

480 advisories

Loading
robdns commit d76d2e6 was discovered to contain a heap overflow via the component block->filename... Critical Unreviewed
CVE-2024-24192 was published Jun 7, 2024
Buffer Overflow vulnerability in CSAPP_Lab CSAPP Lab3 15-213 Fall 20xx allows a remote attacker... Critical Unreviewed
CVE-2024-28515 was published Apr 3, 2024
Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the page parameter of... Critical Unreviewed
CVE-2024-28537 was published Mar 18, 2024
Certain HP LaserJet Pro, HP Enterprise LaserJet, and HP LaserJet Managed Printers are potentially... Critical Unreviewed
CVE-2024-0794 was published Feb 20, 2024
Tenda AX1806 V1.0.0.1 contains a stack overflow vulnerability in function sub_455D4, called by... Critical Unreviewed
CVE-2023-47456 was published Nov 14, 2023
Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the time parameter from... Critical Unreviewed
CVE-2024-30630 was published Mar 29, 2024
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the deviceId parameter of the... Critical Unreviewed
CVE-2024-30596 was published Mar 28, 2024
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the urls parameter of the... Critical Unreviewed
CVE-2024-30587 was published Mar 28, 2024
Apfloat v1.10.1 was discovered to contain a stack overflow via the component org.apfloat.internal... Critical Unreviewed
CVE-2024-23086 was published Apr 8, 2024
JFreeChart v1.5.4 was discovered to contain a NullPointerException via the component /chart... Critical Unreviewed
CVE-2024-22949 was published Apr 9, 2024
Tenda AC7V1.0 v15.03.06.44 firmware has a stack overflow vulnerability via the PPW parameter in... Critical Unreviewed
CVE-2024-32301 was published Apr 17, 2024
Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability located via the page... Critical Unreviewed
CVE-2024-32286 was published Apr 17, 2024
An out-of-bounds read when an HTTP/2 connection to a servers sends "DATA" frames with incorrect... Critical Unreviewed
CVE-2017-5446 was published May 14, 2022
An out-of-bounds read while processing SVG content in "ConvolvePixel". This results in a crash... Critical Unreviewed
CVE-2017-5465 was published May 14, 2022
An issue was discovered in FRRouting FRR through 9.0. bgpd/bgp_packet.c can read the initial byte... Critical Unreviewed
CVE-2023-41360 was published Aug 29, 2023
An issue was discovered in the Linux kernel before 6.3.4. fs/ksmbd/smb2pdu.c in ksmbd does not... Critical Unreviewed
CVE-2023-38428 was published Jul 18, 2023
An issue was discovered in the DNS proxy in Connman through 1.40. The TCP server reply... Critical Unreviewed
CVE-2022-23096 was published Feb 10, 2022
An unvalidated input in a library function responsible for communicating between secure and non... Critical Unreviewed
CVE-2023-4020 was published Dec 15, 2023
The issue was addressed with improved bounds checks. This issue is fixed in macOS Sonoma 14. An... Critical Unreviewed
CVE-2023-40436 was published Sep 27, 2023
An insufficient boundary validation in the USB code could lead to an out-of-bounds read on the... Critical Unreviewed
CVE-2024-41721 was published Sep 20, 2024
In function MatchDomainName(), input param str is treated as a NULL terminated string despite... Critical Unreviewed
CVE-2024-5991 was published Aug 27, 2024
An issue was discovered in the Linux kernel before 6.3.8. fs/smb/server/smb2pdu.c in ksmbd has an... Critical Unreviewed
CVE-2023-38427 was published Jul 18, 2023
HDF5 Library through 1.14.3 contains a out-of-bounds read operation in H5FL_arr_malloc in H5FL.c ... Critical Unreviewed
CVE-2024-32622 was published May 14, 2024
The Cpanel::JSON::XS package before 4.33 for Perl performs out-of-bounds accesses in a way that... Critical Unreviewed
CVE-2022-48623 was published Feb 13, 2024
An attacker was able to perform an out-of-bounds read or write on a JavaScript object by fooling... Critical Unreviewed
CVE-2024-29943 was published Mar 22, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database