Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,992
Erlang
39
GitHub Actions
38
Go
2,634
Maven
5,000+
npm
4,258
NuGet
760
pip
4,051
Pub
12
RubyGems
955
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

174 advisories

Loading
When reading DesFire keys, the function that reads the card isn't properly checking the... Moderate Unreviewed
CVE-2023-33221 was published Dec 15, 2023
IBM Informix Dynamic Server 12.10 and 14.10 archecker is vulnerable to a heap buffer overflow,... Moderate Unreviewed
CVE-2023-28526 was published Dec 9, 2023
IBM Informix Dynamic Server 12.10 and 14.10 cdr is vulnerable to a heap buffer overflow, caused... Moderate Unreviewed
CVE-2023-28527 was published Dec 9, 2023
A heap-based Buffer Overflow flaw was discovered in Samba. It could allow a remote, authenticated... Moderate Unreviewed
CVE-2023-5568 was published Oct 25, 2023
Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.9.0. Moderate Unreviewed
CVE-2023-5686 was published Oct 20, 2023
A vulnerability was found in libtiff due to multiple potential integer overflows in raw2tiff.c.... Moderate Unreviewed
CVE-2023-41175 was published Oct 5, 2023
A heap-based buffer overflow vulnerability was found in coders/tiff.c in ImageMagick. This issue... Moderate Unreviewed
CVE-2023-3428 was published Oct 4, 2023
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1969. Moderate Unreviewed
CVE-2023-5344 was published Oct 2, 2023
Dell PowerEdge BIOS and Dell Precision BIOS contain a buffer overflow vulnerability. A local... Moderate Unreviewed
CVE-2023-32461 was published Sep 15, 2023
Heap-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.3-DEV. Moderate Unreviewed
CVE-2023-4682 was published Aug 31, 2023
A flaw was found in the QEMU virtual crypto device while handling data encryption/decryption... Moderate Unreviewed
CVE-2023-3180 was published Aug 3, 2023
A heap-based buffer overflow issue was discovered in ImageMagick's ReadTIM2ImageData() function... Moderate Unreviewed
CVE-2023-34474 was published Jun 16, 2023
Heap-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.2.2. Moderate Unreviewed
CVE-2023-3291 was published Jun 16, 2023
Microsoft SharePoint Denial of Service Vulnerability Moderate Unreviewed
CVE-2023-33129 was published Jun 14, 2023
Due to failure in validating the length provided by an attacker-crafted MSMMS packet, Wireshark... Moderate Unreviewed
CVE-2023-0667 was published Jun 7, 2023
Due to failure in validating the length provided by an attacker-crafted RTPS packet, Wireshark... Moderate Unreviewed
CVE-2023-0666 was published Jun 7, 2023
A heap-based buffer overflow vulnerability was found in the ImageMagick package that can lead to... Moderate Unreviewed
CVE-2023-2157 was published Jun 6, 2023
A heap-based buffer overflow issue was discovered in libjpeg-turbo in... Moderate Unreviewed
CVE-2023-2804 was published May 26, 2023
Heap-based overflow in Intel(R) SoC Watch based software before version 2021.1 may allow a... Moderate Unreviewed
CVE-2023-30763 was published May 12, 2023
A vulnerability, which was classified as critical, was found in PoDoFo 0.10.0. Affected is the... Moderate Unreviewed
CVE-2023-2241 was published Apr 22, 2023
A heap-based buffer overflow issue was discovered in ImageMagick's ImportMultiSpectralQuantum()... Moderate Unreviewed
CVE-2023-1906 was published Apr 13, 2023
A vulnerability in the IPv6 DHCP (DHCPv6) client module of Cisco Adaptive Security Appliance (ASA... Moderate Unreviewed
CVE-2023-20081 was published Mar 23, 2023
A vulnerability, which was classified as problematic, has been found in syoyo tinydng. Affected... Moderate Unreviewed
CVE-2023-1570 was published Mar 22, 2023
A vulnerability classified as critical was found in vox2png 1.0. Affected by this vulnerability... Moderate Unreviewed
CVE-2023-1010 was published Feb 24, 2023
In wlan driver, there is a possible missing params check. This could lead to local denial of... Moderate Unreviewed
CVE-2022-42783 was published Feb 12, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database