Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

33 advisories

Loading
A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC)... Critical Unreviewed
CVE-2021-31889 was published May 24, 2022
Windows TCP/IP Remote Code Execution Vulnerability Critical Unreviewed
CVE-2024-38063 was published Aug 13, 2024
Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability Critical Unreviewed
CVE-2024-38074 was published Jul 9, 2024
An integer underflow vulnerability exists in the sopen_FAMOS_read functionality of The Biosig... Critical Unreviewed
CVE-2024-23313 was published Feb 20, 2024
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing... Critical Unreviewed
CVE-2019-14199 was published May 24, 2022
Possible integer underflow can happen when calculating length of elementary stream map from... Critical Unreviewed
CVE-2019-2245 was published May 24, 2022
Possible integer underflow can happen when calculating length of elementary stream info from... Critical Unreviewed
CVE-2019-2244 was published May 24, 2022
Improper input validation on input data which is used to locate and copy the additional IEs in... Critical Unreviewed
CVE-2018-11930 was published May 24, 2022
Integer underflow in WebUI in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to... Critical Unreviewed
CVE-2024-0808 was published Jan 24, 2024
An integer underflow in Organization Specific TLV was found in various versions of OpenvSwitch. Critical Unreviewed
CVE-2022-4338 was published Jan 11, 2023
Integer underflow in Sandstorm Cap'n Proto before 0.4.1.1 and 0.5.x before 0.5.1.1 might allow... Critical Unreviewed
CVE-2015-2311 was published May 17, 2022
Integer underflow in the _gdContributionsAlloc function in gd_interpolation.c in the GD Graphics... Critical Unreviewed
CVE-2016-10166 was published May 17, 2022
An integer underflow has been identified in the unicode_to_utf8() function in tnef 1.4.14. This... Critical Unreviewed
CVE-2017-8911 was published May 17, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile,... Critical Unreviewed
CVE-2015-9198 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile... Critical Unreviewed
CVE-2015-9167 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile,... Critical Unreviewed
CVE-2015-9129 was published May 14, 2022
rdesktop versions up to and including v1.8.3 contain an Integer Underflow that leads to a Heap... Critical Unreviewed
CVE-2018-20179 was published May 14, 2022
rdesktop versions up to and including v1.8.3 contain an Integer Underflow that leads to a Heap... Critical Unreviewed
CVE-2018-20180 was published May 13, 2022
Heap-based buffer overflow in Actian Pervasive PSQL v12.10 and Zen v13 allows remote attackers to... Critical Unreviewed
CVE-2017-11757 was published May 13, 2022
Fuji Electric V-Server 4.0.3.0 and prior, An integer underflow vulnerability has been identified,... Critical Unreviewed
CVE-2018-14817 was published May 13, 2022
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap_quote_string in... Critical Unreviewed
CVE-2018-14353 was published May 13, 2022
Integer underflow in header.c in lha allows remote attackers to have unspecified impact via a... Critical Unreviewed
CVE-2016-1925 was published May 13, 2022
In Open vSwitch (OvS) 2.7.0, while parsing an OFPT_QUEUE_GET_CONFIG_REPLY type OFP 1.0 message,... Critical Unreviewed
CVE-2017-9214 was published May 13, 2022
Integer underflow in the base64-decoding implementation in EMC RSA BSAFE Micro Edition Suite (MES... Critical Unreviewed
CVE-2015-0537 was published May 13, 2022
The TRENDnet TI-PG1284i switch(hw v2.0R) prior to version 2.0.2.S0 suffers from an integer... Critical Unreviewed
CVE-2021-33315 was published May 12, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database