GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,300
Erlang
31
GitHub Actions
21
Go
2,069
Maven
5,000+
npm
3,744
NuGet
668
pip
3,429
Pub
12
RubyGems
892
Rust
877
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
485 advisories
Filter by severity
In multiple functions that process 802.11 frames, out-of-bounds reads can occur due to...
Critical
Unreviewed
CVE-2017-17772
was published
Nov 26, 2024
An XML External Entity (XXE) injection vulnerability in Intersec Geosafe-ea 2022.12, 2022.13, and...
Critical
Unreviewed
CVE-2024-35532
was published
Jan 7, 2025
In LibTIFF 4.0.7, the program processes BMP images without verifying that biWidth and biHeight in...
Critical
Unreviewed
CVE-2017-9117
was published
May 13, 2022
In isSlotMarkedSuccessful of BootControl.cpp, there is a possible out of bounds read due to a...
Critical
Unreviewed
CVE-2024-47039
was published
Dec 18, 2024
In prop2cfg of btif_storage.cc, there is a possible out of bounds write due to an incorrect...
Critical
Unreviewed
CVE-2018-9430
was published
Dec 3, 2024
An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in...
Critical
Unreviewed
CVE-2024-54506
was published
Dec 12, 2024
FFmpeg n6.1.1 has an Out-of-bounds Read via libavcodec/ppc/vp8dsp_altivec.c, static const vec_s8...
Critical
Unreviewed
CVE-2024-35367
was published
Nov 29, 2024
robdns commit d76d2e6 was discovered to contain a heap overflow via the component block->filename...
Critical
Unreviewed
CVE-2024-24192
was published
Jun 7, 2024
Buffer Overflow vulnerability in CSAPP_Lab CSAPP Lab3 15-213 Fall 20xx allows a remote attacker...
Critical
Unreviewed
CVE-2024-28515
was published
Apr 3, 2024
Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the page parameter of...
Critical
Unreviewed
CVE-2024-28537
was published
Mar 18, 2024
Certain HP LaserJet Pro, HP Enterprise LaserJet, and HP LaserJet Managed Printers are potentially...
Critical
Unreviewed
CVE-2024-0794
was published
Feb 20, 2024
Tenda AX1806 V1.0.0.1 contains a stack overflow vulnerability in function sub_455D4, called by...
Critical
Unreviewed
CVE-2023-47456
was published
Nov 14, 2023
Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the time parameter from...
Critical
Unreviewed
CVE-2024-30630
was published
Mar 29, 2024
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the deviceId parameter of the...
Critical
Unreviewed
CVE-2024-30596
was published
Mar 28, 2024
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the urls parameter of the...
Critical
Unreviewed
CVE-2024-30587
was published
Mar 28, 2024
JFreeChart v1.5.4 was discovered to contain a NullPointerException via the component /chart...
Critical
Unreviewed
CVE-2024-22949
was published
Apr 9, 2024
Apfloat v1.10.1 was discovered to contain a stack overflow via the component org.apfloat.internal...
Critical
Unreviewed
CVE-2024-23086
was published
Apr 8, 2024
Tenda AC7V1.0 v15.03.06.44 firmware has a stack overflow vulnerability via the PPW parameter in...
Critical
Unreviewed
CVE-2024-32301
was published
Apr 17, 2024
Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability located via the page...
Critical
Unreviewed
CVE-2024-32286
was published
Apr 17, 2024
An out-of-bounds read while processing SVG content in "ConvolvePixel". This results in a crash...
Critical
Unreviewed
CVE-2017-5465
was published
May 14, 2022
An out-of-bounds read when an HTTP/2 connection to a servers sends "DATA" frames with incorrect...
Critical
Unreviewed
CVE-2017-5446
was published
May 14, 2022
An issue was discovered in FRRouting FRR through 9.0. bgpd/bgp_packet.c can read the initial byte...
Critical
Unreviewed
CVE-2023-41360
was published
Aug 29, 2023
An issue was discovered in the Linux kernel before 6.3.4. fs/ksmbd/smb2pdu.c in ksmbd does not...
Critical
Unreviewed
CVE-2023-38428
was published
Jul 18, 2023
An issue was discovered in the DNS proxy in Connman through 1.40. The TCP server reply...
Critical
Unreviewed
CVE-2022-23096
was published
Feb 10, 2022
An unvalidated input in a library function responsible for communicating between secure and non...
Critical
Unreviewed
CVE-2023-4020
was published
Dec 15, 2023
ProTip!
Advisories are also available from the
GraphQL API