GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
99 advisories
Filter by severity
Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a ...
Moderate
Unreviewed
CVE-2004-0747
was published
Apr 29, 2022
Buffer overflow in the AIM and ICQ module in Gaim before 1.5.0 allows remote attackers to cause a...
High
Unreviewed
CVE-2005-2103
was published
May 1, 2022
The init_request_info function in sapi/cgi/cgi_main.c in PHP before 5.2.6 does not properly...
High
Unreviewed
CVE-2008-0599
was published
May 1, 2022
Buffer overflow in FTP server in HPUX 11 allows remote attackers to execute arbitrary commands by...
High
Unreviewed
CVE-2001-0248
was published
Apr 30, 2022
Multiple stack-based buffer overflows in libcURL and cURL 7.12.1, and possibly other versions,...
Moderate
Unreviewed
CVE-2005-0490
was published
May 1, 2022
Buffer overflow in the get_tag function in mod_include for Apache 1.3.x to 1.3.32 allows local...
Moderate
Unreviewed
CVE-2004-0940
was published
Apr 29, 2022
Multiple buffer overflows in Cyrus SASL library 2.1.9 and earlier allow remote attackers to cause...
High
Unreviewed
CVE-2002-1347
was published
Apr 30, 2022
Sudo before 1.6.6 contains an off-by-one error that can result in a heap-based buffer overflow...
High
Unreviewed
CVE-2002-0184
was published
Apr 30, 2022
A stack-based buffer overflow exists in IBM Merge Healthcare eFilm Workstation license server. A...
Critical
Unreviewed
CVE-2024-23622
was published
Jan 26, 2024
A buffer overflow exists in IBM Merge Healthcare eFilm Workstation license server. A remote,...
Critical
Unreviewed
CVE-2024-23621
was published
Jan 26, 2024
Buffer overflow in extproc in Oracle 10g allows remote attackers to execute arbitrary code via...
High
Unreviewed
CVE-2004-1363
was published
Apr 29, 2022
Heap overflow in FTP daemon in Solaris 8 allows remote attackers to execute arbitrary commands by...
High
Unreviewed
CVE-2001-0249
was published
Apr 30, 2022
FTP service in IIS 5.0 and earlier allows remote attackers to cause a denial of service via a...
Moderate
Unreviewed
CVE-2001-0334
was published
Apr 30, 2022
Microsoft Defender Remote Code Execution Vulnerability
High
Unreviewed
CVE-2021-1647
was published
May 24, 2022
In versions of FreeBSD 12.4-RELEASE prior to 12.4-RELEASE-p7 and FreeBSD 13.2-RELEASE prior to 13...
Critical
Unreviewed
CVE-2023-5941
was published
Nov 8, 2023
In throttling, there is a possible out of bounds write due to an incorrect calculation of buffer...
Moderate
Unreviewed
CVE-2022-32624
was published
Dec 5, 2022
An out-of-bounds write vulnerability exists in the TIFF header count-processing functionality of...
High
Unreviewed
CVE-2021-21773
was published
May 24, 2022
Apache Hadoop heap overflow before v2.10.2, v3.2.3, v3.3.2
Critical
CVE-2021-37404
was published
for
org.apache.hadoop:hadoop-common
(Maven)
Jun 14, 2022
Incorrect Calculation of Buffer Size in GitHub repository vim/vim prior to 9.0.1378.
High
Unreviewed
CVE-2023-1175
was published
Mar 4, 2023
An improperly performed length calculation on a buffer in PlaintextRecordLayer could lead to an...
Moderate
Unreviewed
CVE-2019-3560
was published
May 24, 2022
Incorrect buffer size in crossbeam-channel
Moderate
CVE-2020-35904
was published
for
crossbeam-channel
(Rust)
Aug 25, 2021
In PHP 8.0.X before 8.0.28, 8.1.X before 8.1.16 and 8.2.X before 8.2.3, core path resolution...
Critical
Unreviewed
CVE-2023-0568
was published
Feb 16, 2023
An out-of-bounds memory access flaw was found in the Linux kernel Intel’s iSMT SMBus host...
Moderate
Unreviewed
CVE-2022-2873
was published
Aug 23, 2022
A vulnerability has been identified in OpenPCS 7 V8.1 (All versions), OpenPCS 7 V8.2 (All...
High
Unreviewed
CVE-2019-19282
was published
May 24, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2022-24907
was published
Mar 28, 2023
ProTip!
Advisories are also available from the
GraphQL API