GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
60 advisories
Filter by severity
Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-49093
was published
Dec 12, 2024
The Wallet for WooCommerce plugin for WordPress is vulnerable to incorrect conversion between...
Moderate
Unreviewed
CVE-2024-7747
was published
Nov 28, 2024
DHCP Server Service Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-38044
was published
Jul 9, 2024
A vulnerability has been identified in SIPLUS TIM 1531 IRC (6AG1543-1MX00-7XE0) (All versions <...
Moderate
Unreviewed
CVE-2022-40225
was published
Jun 11, 2024
vyper's range(start, start + N) reverts for negative numbers
Moderate
CVE-2024-32481
was published
for
vyper
(pip)
Apr 25, 2024
Microsoft ODBC Driver Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-26162
was published
Mar 12, 2024
Incorrect code generation could have led to unexpected numeric conversions and potential...
High
Unreviewed
CVE-2024-1552
was published
Feb 20, 2024
Dell BIOS contains a Signed to Unsigned Conversion Error vulnerability. A local authenticated...
Moderate
Unreviewed
CVE-2023-28063
was published
Feb 6, 2024
Okio Signed to Unsigned Conversion Error vulnerability
Moderate
CVE-2023-3635
was published
for
com.squareup.okio:okio
(Maven)
Jul 12, 2023
A vulnerability in the hardware-based SSL/TLS cryptography functionality of Cisco Adaptive...
High
Unreviewed
CVE-2023-20006
was published
Jun 28, 2023
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where sign...
High
Unreviewed
CVE-2023-0185
was published
Apr 1, 2023
An integer conversion vulnerability exists in the SORBAx64.dll RecvPacket functionality of...
Critical
Unreviewed
CVE-2022-43663
was published
Mar 20, 2023
Oxenstored 32->31 bit integer truncation issues Integers in Ocaml are 63 or 31 bits of signed...
Moderate
Unreviewed
CVE-2022-42324
was published
Nov 1, 2022
An integer conversion error in Hermes bytecode generation, prior to commit...
Critical
Unreviewed
CVE-2022-40138
was published
Oct 11, 2022
Besu VM vulnerable to gas allocation error in CALL operations
Critical
CVE-2022-36025
was published
for
org.hyperledger.besu:evm
(Maven)
Sep 23, 2022
An integer coercion error was found in the openvswitch kernel module. Given a sufficiently large...
High
Unreviewed
CVE-2022-2639
was published
Sep 2, 2022
Apache Xalan Java XSLT library integer truncation issue when processing malicious XSLT stylesheets
High
CVE-2022-34169
was published
for
xalan:xalan
(Maven)
Jul 20, 2022
A vulnerability was found in FFmpeg 2.0. It has been declared as problematic. Affected by this...
High
Unreviewed
CVE-2014-125011
was published
Jun 19, 2022
A vulnerability was found in FFmpeg 2.0. It has been classified as problematic. Affected is an...
Moderate
Unreviewed
CVE-2014-125012
was published
Jun 19, 2022
An information disclosure vulnerability exists in the /proc/pid/syscall functionality of Linux...
Moderate
Unreviewed
CVE-2020-28588
was published
May 24, 2022
An exploitable signed conversion vulnerability exists in the TextMaker document parsing...
High
Unreviewed
CVE-2020-13545
was published
May 24, 2022
An exploitable sign extension vulnerability exists in the TextMaker document parsing...
High
Unreviewed
CVE-2020-13544
was published
May 24, 2022
An issue was discovered in OpenPOWER 2.6 firmware. unpack_timestamp() calls le32_to_cpu() for...
Critical
Unreviewed
CVE-2021-36357
was published
May 24, 2022
An exploitable integer truncation vulnerability exists within the MPEG-4 decoding functionality...
High
Unreviewed
CVE-2021-21860
was published
May 24, 2022
An exploitable integer truncation vulnerability exists within the MPEG-4 decoding functionality...
High
Unreviewed
CVE-2021-21861
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API