GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
2,814 advisories
Filter by severity
Improper restriction of write operations in SNP firmware could allow a malicious hypervisor to...
Moderate
Unreviewed
CVE-2023-31355
was published
Aug 5, 2024
A vulnerability classified as critical has been found in emqx neuron up to 2.10.0. Affected is...
Moderate
Unreviewed
CVE-2024-10964
was published
Nov 7, 2024
A vulnerability has been found in SourceCodester Student Record Management System 1.0 and...
Moderate
Unreviewed
CVE-2024-11262
was published
Nov 16, 2024
A vulnerability was found in PHP where setting the environment variable PHP_CLI_SERVER_WORKERS to...
Moderate
Unreviewed
CVE-2022-4900
was published
Nov 2, 2023
A vulnerability in the ipsecmgr process of Cisco ASR 5000 Series Software (StarOS) could...
Moderate
Unreviewed
CVE-2021-1424
was published
Nov 18, 2024
A vulnerability, which was classified as critical, was found in SourceCodester Student Record...
Moderate
Unreviewed
CVE-2024-11261
was published
Nov 16, 2024
In the Linux kernel, the following vulnerability has been resolved:
ntfs3: Add bounds checking...
Moderate
Unreviewed
CVE-2024-50248
was published
Nov 9, 2024
APTIOV contains a vulnerability in BIOS where an attacker may cause an Improper Restriction of...
Moderate
Unreviewed
CVE-2024-33658
was published
Nov 12, 2024
A heap buffer overflow in Fortinet FortiOS all versions below 6.0.5 in the SSL VPN web portal may...
Moderate
Unreviewed
CVE-2018-13383
was published
May 24, 2022
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in HYPR...
Moderate
Unreviewed
CVE-2023-6334
was published
Jan 16, 2024
Forcing the Bluetooth LE stack to segment 'prepare write response' packets can lead to an out-of...
Moderate
Unreviewed
CVE-2023-3024
was published
Sep 29, 2023
Multiple buffer overflow vulnerabilities in SiLabs Z/IP Gateway SDK version 7.18.01 and earlier...
Moderate
Unreviewed
CVE-2023-0970
was published
Jun 21, 2023
An improper restriction of operations within the bounds of a memory buffer in the USB file...
Moderate
Unreviewed
CVE-2024-38269
was published
Sep 24, 2024
An improper restriction of operations within the bounds of a memory buffer in the MAC address...
Moderate
Unreviewed
CVE-2024-38268
was published
Sep 24, 2024
An improper restriction of operations within the bounds of a memory buffer in the IPv6 address...
Moderate
Unreviewed
CVE-2024-38267
was published
Sep 24, 2024
An improper restriction of operations within the bounds of a memory buffer in the parameter type...
Moderate
Unreviewed
CVE-2024-38266
was published
Sep 24, 2024
Improper Input Validation vulnerability in Hitachi Energy MicroSCADA X SYS600 while reading a...
Moderate
Unreviewed
CVE-2022-1778
was published
Sep 15, 2022
Buffer overflow in some Zoom Workplace Apps and SDK’s may allow an authenticated user to conduct...
Moderate
Unreviewed
CVE-2024-27243
was published
May 15, 2024
Zoom for Windows clients prior to 5.14.0 contain an improper restriction of operations within the...
Moderate
Unreviewed
CVE-2023-28601
was published
Jun 13, 2023
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 with a Federated...
Moderate
Unreviewed
CVE-2023-35012
was published
Jul 17, 2023
Several memory vulnerabilities were identified within the OpenSC packages, particularly in the...
Moderate
Unreviewed
CVE-2023-40661
was published
Nov 6, 2023
A potential vulnerability in the LenovoFlashDeviceInterface SMI handler may allow an attacker...
Moderate
Unreviewed
CVE-2023-2290
was published
Jun 26, 2023
In Artifex MuPDF 1.13.0, the pdf_get_xref_entry function in pdf/pdf-xref.c allows remote...
Moderate
Unreviewed
CVE-2018-16647
was published
May 13, 2022
The count_entries function in pdf-layer.c in Artifex Software, Inc. MuPDF 1.10a allows remote...
Moderate
Unreviewed
CVE-2016-10221
was published
May 17, 2022
In Artifex MuPDF 1.12.0, the pdf_read_new_xref function in pdf/pdf-xref.c allows remote attackers...
Moderate
Unreviewed
CVE-2018-6192
was published
May 14, 2022
ProTip!
Advisories are also available from the
GraphQL API