GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
2,814 advisories
Filter by severity
A vulnerability in the memory buffer of Cisco Wireless LAN Controller (WLC) AireOS Software could...
Moderate
Unreviewed
CVE-2023-20251
was published
Sep 27, 2023
Xmlsoft Libxml2 v2.11.0 was discovered to contain a global buffer overflow via the...
Moderate
Unreviewed
CVE-2023-39615
was published
Aug 29, 2023
libvmod-digest before 1.0.3, as used in Varnish Enterprise 6.0.x before 6.0.11r5, has an out-of...
Moderate
Unreviewed
CVE-2023-41104
was published
Aug 23, 2023
In multiple functions of mem_protect.c, there is a possible way to access hypervisor memory due...
Moderate
Unreviewed
CVE-2023-21264
was published
Aug 14, 2023
Improper buffer restrictions in some Intel(R) NUC BIOS firmware may allow a privileged user to...
Moderate
Unreviewed
CVE-2022-36372
was published
Aug 11, 2023
Improper buffer restrictions in the BIOS firmware for some Intel(R) Processors may allow a...
Moderate
Unreviewed
CVE-2022-27879
was published
Aug 11, 2023
A CWE-119: Improper Restriction of Operations within the Bounds of a Memory
Buffer vulnerability...
Moderate
Unreviewed
CVE-2023-3953
was published
Aug 9, 2023
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 with a Federated...
Moderate
Unreviewed
CVE-2023-35012
was published
Jul 17, 2023
A memory corruption flaw was found in the Linux kernel’s human interface device (HID) subsystem...
Moderate
Unreviewed
CVE-2023-1073
was published
Jul 6, 2023
In setProfileName of DevicePolicyManagerService.java, there is a possible way to crash the...
Moderate
Unreviewed
CVE-2023-21167
was published
Jun 28, 2023
A potential vulnerability in the LenovoFlashDeviceInterface SMI handler may allow an attacker...
Moderate
Unreviewed
CVE-2023-2290
was published
Jun 26, 2023
Multiple buffer overflow vulnerabilities in SiLabs Z/IP Gateway SDK version 7.18.01 and earlier...
Moderate
Unreviewed
CVE-2023-0970
was published
Jun 21, 2023
Zoom for Windows clients prior to 5.14.0 contain an improper restriction of operations within the...
Moderate
Unreviewed
CVE-2023-28601
was published
Jun 13, 2023
Transient DOS due to untrusted Pointer Dereference in core while sending USB QMI request.
Moderate
Unreviewed
CVE-2022-40533
was published
Jun 6, 2023
A vulnerability classified as critical was found in Twister Antivirus 8. This vulnerability...
Moderate
Unreviewed
CVE-2023-2873
was published
May 24, 2023
A vulnerability was found in the libtiff library. This flaw causes a heap buffer overflow issue...
Moderate
Unreviewed
CVE-2023-30774
was published
May 19, 2023
A vulnerability was found in the libtiff library. This security flaw causes a heap buffer...
Moderate
Unreviewed
CVE-2023-30775
was published
May 19, 2023
A potential heap based buffer overflow was found in _bfd_elf_slurp_version_tables() in bfd/elf.c....
Moderate
Unreviewed
CVE-2023-1972
was published
May 18, 2023
A flaw was found in LibRaw. A heap-buffer-overflow in raw2image_ex() caused by a maliciously...
Moderate
Unreviewed
CVE-2023-1729
was published
May 16, 2023
An authenticated, remote attacker may use a Improper Restriction of Operations within the Bounds...
Moderate
Unreviewed
CVE-2022-47393
was published
May 15, 2023
Improper buffer restrictions in some Intel(R) Server Board BMC firmware before version 2.90 may...
Moderate
Unreviewed
CVE-2023-25545
was published
May 10, 2023
Improper buffer restriction in software for the Intel QAT Driver for Linux before version 1.7.l.4...
Moderate
Unreviewed
CVE-2022-41808
was published
May 10, 2023
An issue found in Cesanta MJS v.1.26 allows a local attacker to cause a denial of service via the...
Moderate
Unreviewed
CVE-2023-30088
was published
May 9, 2023
In spipe drive, there is a possible out of bounds write due to a missing bounds check. This could...
Moderate
Unreviewed
CVE-2022-47488
was published
May 9, 2023
llvm-project commit fdbc55a5 was discovered to contain a segmentation fault via the component...
Moderate
Unreviewed
CVE-2023-29932
was published
May 5, 2023
ProTip!
Advisories are also available from the
GraphQL API