GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,901
Maven
5,000+
npm
3,631
NuGet
638
pip
3,245
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,146 advisories
Filter by severity
A buffer copy without checking size of input vulnerability has been reported to affect several...
Moderate
Unreviewed
CVE-2024-32763
was published
Sep 6, 2024
A buffer overflow in the RTSP service of the Ambarella Oryx RTSP Server 2020-01-07 allows an...
Critical
Unreviewed
CVE-2020-24918
was published
May 24, 2022
Buffer Overflow vulnerability in the nomath() function in Mathtex v.1.05 and before allows a...
High
Unreviewed
CVE-2023-51888
was published
Jan 24, 2024
Memory corruption when user provides data for FM HCI command control operations.
High
Unreviewed
CVE-2024-33052
was published
Sep 2, 2024
jbig2enc v0.28 was discovered to contain a SEGV via jbig2_add_page in src/jbig2enc.cc:512.
Moderate
Unreviewed
CVE-2023-46363
was published
Nov 8, 2023
Memory corruption during the handshake between the Primary Virtual Machine and Trusted Virtual...
High
Unreviewed
CVE-2024-33054
was published
Sep 2, 2024
Memory corruption when Alternative Frequency offset value is set to 255.
High
Unreviewed
CVE-2024-33042
was published
Sep 2, 2024
Dlink Dir-3040us A1 1.20b03a hotfix is vulnerable to Buffer Overflow. Any user having read/write...
High
Unreviewed
CVE-2024-27619
was published
Mar 29, 2024
A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. An...
Low
Unreviewed
CVE-2024-45619
was published
Sep 4, 2024
A vulnerability was found in the pkcs15-init tool in OpenSC. An attacker could use a crafted USB...
Low
Unreviewed
CVE-2024-45620
was published
Sep 4, 2024
YugabyteDB v2.21.1.0 was discovered to contain a buffer overflow via the "insert into" parameter.
High
Unreviewed
CVE-2024-41435
was published
Sep 3, 2024
PingCAP TiDB v8.1.0 was discovered to contain a buffer overflow via the component expression...
Critical
Unreviewed
CVE-2024-41433
was published
Sep 3, 2024
A buffer overflow vulnerability in /bin/boa on D-Link DIR-619L Rev.B 2.06B1 via...
Moderate
Unreviewed
CVE-2024-33773
was published
May 14, 2024
ClickHouse v24.3.3.102 was discovered to contain a buffer overflow via the component DB:...
High
Unreviewed
CVE-2024-41436
was published
Sep 3, 2024
A buffer overflow vulnerability in the library "libclinkc" of the Zyxel VMG8825-T50K firmware...
High
Unreviewed
CVE-2024-5412
was published
Sep 3, 2024
A buffer overflow vulnerability in the CGI program of Zyxel ATP series firmware versions from V4...
Moderate
Unreviewed
CVE-2024-6343
was published
Sep 3, 2024
TOTOLINK AC1200 Wireless Router A3002RU V2.1.1-B20230720.1011 is vulnerable to Buffer Overflow....
Critical
Unreviewed
CVE-2024-34198
was published
Aug 28, 2024
Buffer Overflow vulnerability in Wireshark team Wireshark before v.4.2.0 allows a remote attacker...
High
Unreviewed
CVE-2024-24479
was published
Feb 21, 2024
Buffer overflow vulnerability in the FLP module. Successful exploitation of this vulnerability...
Critical
Unreviewed
CVE-2023-52103
was published
Jan 16, 2024
Libde265 v1.0.14 was discovered to contain a global buffer overflow vulnerability in the...
High
Unreviewed
CVE-2023-49468
was published
Dec 7, 2023
An issue was discovered in drivers/net/ethernet/intel/igb/igb_main.c in the IGB driver in the...
Critical
Unreviewed
CVE-2023-45871
was published
Oct 15, 2023
A stack overflow in FAST FW300R v1.3.13 Build 141023 Rel.61347n allows attackers to execute...
Critical
Unreviewed
CVE-2024-41285
was published
Aug 26, 2024
Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.city.vlan parameter in the function...
Critical
Unreviewed
CVE-2024-44555
was published
Aug 26, 2024
The MPD package included in TwinCAT/BSD allows an authenticated, low-privileged local
attacker to...
Moderate
Unreviewed
CVE-2024-41176
was published
Aug 27, 2024
A global-buffer-overflow vulnerability was found in SWFTools v0.9.2, in the function LineText at...
High
Unreviewed
CVE-2024-25165
was published
Feb 14, 2024
ProTip!
Advisories are also available from the
GraphQL API