GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,395
Composer 4,383
Erlang 33
GitHub Actions 22
Go 2,141
Maven 5,314
npm 3,803
NuGet 687
pip 3,479
Pub 12
RubyGems 897
Rust 898
Swift 38

Unreviewed advisories

All unreviewed 245,615

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

673 advisories

Filter by severity

Sort by

Least recently updated

In XS 9.0.0 in Moddable SDK OS180329, there is a heap-based buffer overflow in fxBeginHost in... Critical Unreviewed

CVE-2019-16366 was published May 24, 2022

The specific fields of CGI interface of some Dahua products are not strictly verified, an... Critical Unreviewed

CVE-2019-9677 was published May 24, 2022

File Sharing Wizard 1.5.0 allows a remote attacker to obtain arbitrary code execution by... Critical Unreviewed

CVE-2019-16724 was published May 24, 2022

Mozilla developers and community members reported memory safety bugs present in Firefox 68. Some... Critical Unreviewed

CVE-2019-11734 was published May 24, 2022

Mozilla developers and community members reported memory safety bugs present in Firefox 68 and... Critical Unreviewed

CVE-2019-11735 was published May 24, 2022

Buffer overflow in WLAN NAN function due to lack of check of count value received in NAN... Critical Unreviewed

CVE-2019-10540 was published May 24, 2022

Possible buffer overflow issue due to lack of length check when parsing the extended cap IE... Critical Unreviewed

CVE-2019-10539 was published May 24, 2022

Classic buffer overflow vulnerability while playing the specific video whose Decode picture... Critical Unreviewed

CVE-2019-2252 was published May 24, 2022

In the Linux kernel through 5.3.2, cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c does not... Critical Unreviewed

CVE-2019-17133 was published May 24, 2022

NetSarang XFTP Client 6.0149 and earlier version contains a buffer overflow vulnerability caused... Critical Unreviewed

CVE-2019-17320 was published May 24, 2022

A Structured Exception Handler (SEH) based buffer overflow in File Sharing Wizard 1.5.0 26-8-2008... Critical Unreviewed

CVE-2019-17415 was published May 24, 2022

Certain D-Link products are affected by: Buffer Overflow. This affects DIR-880L 1.08B04 and DIR... Critical Unreviewed

CVE-2017-14948 was published May 24, 2022

Milesight IP security cameras through 2016-11-14 have a buffer overflow in a web application via... Critical Unreviewed

CVE-2016-2356 was published May 24, 2022

A remote SEH buffer overflow has been discovered in IntraSrv 1.0 (2007-06-03). An attacker may... Critical Unreviewed

CVE-2019-17181 was published May 24, 2022

TightVNC code version 1.3.10 contains global buffer overflow in HandleCoRREBBP macro function,... Critical Unreviewed

CVE-2019-8287 was published May 24, 2022

CODESYS 3 web server before 3.5.15.20, as distributed with CODESYS Control runtime systems, has a... Critical Unreviewed

CVE-2019-18858 was published May 24, 2022

An issue was discovered in the ROS communications-related packages (aka ros_comm or ros-melodic... Critical Unreviewed

CVE-2019-13566 was published May 24, 2022

Firecracker vsock implementation buffer overflow in versions 0.18.0 and 0.19.0. This can result... Critical Unreviewed

CVE-2019-18960 was published May 24, 2022

The FTP client in AceaXe Plus 1.0 allows a buffer overflow via a long EHLO response from an FTP... Critical Unreviewed

CVE-2019-19782 was published May 24, 2022

NetHack before 3.6.4 is prone to a buffer overflow vulnerability when reading very long lines... Critical Unreviewed

CVE-2019-19905 was published May 24, 2022

Buffer Copy without Checking Size of Input in Pillow Critical

CVE-2020-5311 was published for pillow (pip) May 24, 2022

A buffer overflow in the M_LoadDefaults function in m_misc.c in id Tech 1 (aka Doom engine)... Critical Unreviewed

CVE-2020-15007 was published May 24, 2022

** DISPUTED ** A buffer overflow vulnerability exists in the mg_get_http_header function in... Critical Unreviewed

CVE-2020-25756 was published May 24, 2022

The implementation of realpath in libuv < 10.22.1, < 12.18.4, and < 14.9.0 used within Node.js... Critical Unreviewed

CVE-2020-8252 was published May 24, 2022

U.S. Air Force Sensor Data Management System extract75 has a buffer overflow that leads to code... Critical Unreviewed

CVE-2020-13995 was published May 24, 2022

Previous 1 2 3 4 5 6 7 … 26 27 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

673 advisories