GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
27 advisories
Filter by severity
Memory corruption while processing voice packet with arbitrary data received from ADSP.
High
Unreviewed
CVE-2024-38422
was published
Nov 4, 2024
Tencent Libpag v4.3 is vulnerable to Buffer Overflow. A user can send a crafted image to trigger...
Critical
Unreviewed
CVE-2024-33078
was published
May 1, 2024
An issue in Wireshark team Wireshark before v.4.2.0 allows a remote attacker to cause a denial of...
High
Unreviewed
CVE-2024-24478
was published
Feb 21, 2024
An integer overflow in xerces-c++ 3.2.3 in BigFix Platform allows remote attackers to cause out...
High
Unreviewed
CVE-2023-37536
was published
Oct 11, 2023
`AppendEncodedAttributeValue(), ExtraSpaceNeededForAttrEncoding()` and `AppendEncodedCharacters()...
Unknown
Unreviewed
CVE-2024-2608
was published
Mar 19, 2024
The bson_strfreev function in the MongoDB C driver library may be susceptible to an integer...
Moderate
Unreviewed
CVE-2024-6381
was published
Jul 2, 2024
A vulnerability was found in libtiff due to multiple potential integer overflows in raw2tiff.c....
Moderate
Unreviewed
CVE-2023-41175
was published
Oct 5, 2023
Memory corruption while using the UIM diag command to get the operators name.
High
Unreviewed
CVE-2023-33018
was published
Dec 5, 2023
Memory corruption in RIL while trying to send apdu packet.
High
Unreviewed
CVE-2023-21648
was published
Aug 8, 2023
Memory corruption in WLAN due to integer overflow to buffer overflow in WLAN during...
High
Unreviewed
CVE-2022-40530
was published
Mar 10, 2023
Memory corruption due to integer overflow to buffer overflow in Modem while parsing Traffic...
High
Unreviewed
CVE-2022-33296
was published
Apr 13, 2023
Memory corruption in HLOS while invoking IOCTL calls from user-space.
High
Unreviewed
CVE-2023-33022
was published
Dec 5, 2023
Memory corruption while loading an ELF segment in TEE Kernel.
High
Unreviewed
CVE-2023-28585
was published
Dec 5, 2023
Memory corruption in RIL due to Integer Overflow while triggering qcril_uim_request_apdu request.
High
Unreviewed
CVE-2023-21644
was published
Sep 5, 2023
Memory corruption in Automotive Multimedia due to integer overflow to buffer overflow during...
High
Unreviewed
CVE-2022-33282
was published
Apr 13, 2023
Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response
High
Unreviewed
CVE-2022-25705
was published
Mar 10, 2023
Memory corruption in User Identity Module due to integer overflow to buffer overflow when a...
High
Unreviewed
CVE-2022-33248
was published
Feb 12, 2023
Memory corruption while allocating memory for graphics.
High
Unreviewed
CVE-2024-21470
was published
Apr 1, 2024
Transient DOS while decoding the ToBeSignedMessage in Automotive Telematics.
High
Unreviewed
CVE-2024-21454
was published
Apr 1, 2024
Avira Free Antivirus 15.0.1907.1514 is prone to a local privilege escalation through the...
High
Unreviewed
CVE-2019-18568
was published
May 24, 2022
Integer overflow in some Intel(R) Server Board BMC firmware before version 2.90 may allow a...
Moderate
Unreviewed
CVE-2023-22443
was published
May 10, 2023
A code execution vulnerability exists in the WS-Addressing plugin functionality of Genivia gSOAP...
Critical
Unreviewed
CVE-2020-13576
was published
May 24, 2022
Integer overflow in some Intel(R) Aptio* V UEFI Firmware Integrator Tools may allow an...
Moderate
Unreviewed
CVE-2023-22305
was published
Nov 14, 2023
An integer overflow vulnerability exists in the way ESTsoft Alyac 2.5.8.544 parses OLE files. A...
High
Unreviewed
CVE-2022-29886
was published
Aug 6, 2022
A VULNERABILITY_CLASS vulnerability exists in the FEATURE functionality of Disc Soft Ltd Deamon...
Critical
Unreviewed
CVE-2021-21832
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API