GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,600
Composer 5,005
Erlang 39
GitHub Actions 38
Go 2,635
Maven 6,103
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,389

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

524 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An insufficient boundary validation in the USB code could lead to an out-of-bounds read on the... Critical Unreviewed

CVE-2024-41721 was published Sep 20, 2024

In function MatchDomainName(), input param str is treated as a NULL terminated string despite... Critical Unreviewed

CVE-2024-5991 was published Aug 27, 2024

Editor code failed to check an attribute value. This could have led to an out-of-bounds read.... Critical Unreviewed

CVE-2024-7522 was published Aug 6, 2024

Clipboard code failed to check the index on an array access. This could have lead to an out-of... Critical Unreviewed

CVE-2024-6606 was published Jul 9, 2024

In MIT Kerberos 5 (aka krb5) before 1.21.3, an attacker can cause invalid memory reads during GSS... Critical Unreviewed

CVE-2024-37371 was published Jun 29, 2024

Issue summary: Calling the OpenSSL API function SSL_select_next_proto with an empty supported... Critical Unreviewed

CVE-2024-5535 was published Jun 27, 2024

Libarchive before 3.7.4 allows name out-of-bounds access when a ZIP archive has an empty-name... Critical Unreviewed

CVE-2024-37407 was published Jun 8, 2024

robdns commit d76d2e6 was discovered to contain a heap overflow via the component block->filename... Critical Unreviewed

CVE-2024-24192 was published Jun 7, 2024

In the Linux kernel, the following vulnerability has been resolved: tracing: Correct the length... Critical Unreviewed

CVE-2021-47274 was published May 21, 2024

HDF5 Library through 1.14.3 contains a out-of-bounds read operation in H5FL_arr_malloc in H5FL.c ... Critical Unreviewed

CVE-2024-32622 was published May 14, 2024

Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability located via the page... Critical Unreviewed

CVE-2024-32286 was published Apr 17, 2024

Tenda AC7V1.0 v15.03.06.44 firmware has a stack overflow vulnerability via the PPW parameter in... Critical Unreviewed

CVE-2024-32301 was published Apr 17, 2024

JFreeChart v1.5.4 was discovered to contain a NullPointerException via the component /chart... Critical Unreviewed

CVE-2024-22949 was published Apr 9, 2024

Apfloat v1.10.1 was discovered to contain a stack overflow via the component org.apfloat.internal... Critical Unreviewed

CVE-2024-23086 was published Apr 8, 2024

Due to length check, an attacker with privilege access on a Linux Nonsecure operating system can... Critical Unreviewed

CVE-2024-22004 was published Apr 5, 2024

Buffer Overflow vulnerability in CSAPP_Lab CSAPP Lab3 15-213 Fall 20xx allows a remote attacker... Critical Unreviewed

CVE-2024-28515 was published Apr 3, 2024

Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the time parameter from... Critical Unreviewed

CVE-2024-30630 was published Mar 29, 2024

Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the urls parameter of the... Critical Unreviewed

CVE-2024-30587 was published Mar 28, 2024

Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the deviceId parameter of the... Critical Unreviewed

CVE-2024-30596 was published Mar 28, 2024

An attacker was able to perform an out-of-bounds read or write on a JavaScript object by fooling... Critical Unreviewed

CVE-2024-29943 was published Mar 22, 2024

Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the page parameter of... Critical Unreviewed

CVE-2024-28537 was published Mar 18, 2024

Certain HP LaserJet Pro, HP Enterprise LaserJet, and HP LaserJet Managed Printers are potentially... Critical Unreviewed

CVE-2024-0794 was published Feb 20, 2024

The Cpanel::JSON::XS package before 4.33 for Perl performs out-of-bounds accesses in a way that... Critical Unreviewed

CVE-2022-48623 was published Feb 13, 2024

Buffer over-read vulnerability in the dtls_sha256_update function in Contiki-NG tinyDTLS through... Critical Unreviewed

CVE-2021-42147 was published Jan 24, 2024

Buffer over-read vulnerability in Contiki-NG tinyDTLS through master branch 53a0d97 allows... Critical Unreviewed

CVE-2021-42144 was published Jan 24, 2024

Previous 12…21 Next

Previous 1 2 3 4 5 … 20 21 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

524 advisories