Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+

2,208 advisories

Loading
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability Critical Unreviewed
CVE-2024-49112 was published Dec 12, 2024
Animate versions 23.0.8, 24.0.5 and earlier are affected by an Integer Overflow or Wraparound... High Unreviewed
CVE-2024-52983 was published Dec 10, 2024
In oemCallback of ril.cpp, there is a possible out of bounds write due to an integer overflow... High Unreviewed
CVE-2018-9404 was published Dec 5, 2024
Improper Input Validation vulnerability in RestApp Inc. Online Ordering System allows Integer... Moderate Unreviewed
CVE-2024-7488 was published Dec 4, 2024
In the Linux kernel, the following vulnerability has been resolved: mm/mremap: fix address... Moderate Unreviewed
CVE-2024-53111 was published Dec 2, 2024
In the Linux kernel, the following vulnerability has been resolved: fs/proc/task_mmu: prevent... Moderate Unreviewed
CVE-2024-53107 was published Dec 2, 2024
Transient DOS while parsing the ML IE when a beacon with common info length of the ML IE greater... High Unreviewed
CVE-2024-33063 was published Dec 2, 2024
FFmpeg n6.1.1 is Integer Overflow. The vulnerability exists in the parse_options function of... Critical Unreviewed
CVE-2024-35366 was published Nov 29, 2024
An integer overflow in the component /libavformat/westwood_vqa.c of FFmpeg n6.1.1 allows... Moderate Unreviewed
CVE-2024-36616 was published Nov 29, 2024
FFmpeg n6.1.1 has a vulnerability in the WAVARC decoder of the libavcodec library which allows... Moderate Unreviewed
CVE-2024-36619 was published Nov 29, 2024
In FFmpeg version n6.1.1, specifically within the avcodec/speexdec.c module, a potential security... Moderate Unreviewed
CVE-2024-35369 was published Nov 29, 2024
FFmpeg n6.1.1 has an integer overflow vulnerability in the FFmpeg CAF decoder. Moderate Unreviewed
CVE-2024-36617 was published Nov 29, 2024
FFmpeg n6.1.1 has a vulnerability in the AVI demuxer of the libavformat library which allows for... Moderate Unreviewed
CVE-2024-36618 was published Nov 29, 2024
nodemcu before v3.0.0-release_20240225 was discovered to contain an integer overflow via the... Critical Unreviewed
CVE-2024-36671 was published Nov 29, 2024
In String16 of String16.cpp, there is a possible out of bounds write due to an integer overflow.... High Unreviewed
CVE-2017-13323 was published Nov 28, 2024
In ihevcd_allocate_dynamic_bufs of ihevcd_api.c there is a possible resource exhaustion due to... Moderate Unreviewed
CVE-2018-9352 was published Nov 28, 2024
An issue was discovered in MBed OS 6.16.0. During processing of HCI packets, the software... High Unreviewed
CVE-2024-48983 was published Nov 20, 2024
In xmlMemStrdupLoc of xmlmemory.c, there is a possible out-of-bounds write due to an integer... High Unreviewed
CVE-2018-9472 was published Nov 20, 2024
In intr_data_copy_cb of btif_hd.cc, there is a possible out of bounds read due to an integer... Moderate Unreviewed
CVE-2018-9482 was published Nov 20, 2024
In bta_hd_set_report_act of bta_hd_act.cc, there is a possible out-of-bounds read due to an... Moderate Unreviewed
CVE-2018-9481 was published Nov 20, 2024
ASA-2024-010: cosmossdk.io/math: Mismatched bit-length validation in sdk.Int and sdk.Dec can lead to panic High
GHSA-7225-m954-23v7 was published for cosmossdk.io/math (Go) Nov 20, 2024
In SMF_ParseMetaEvent of eas_smf.c, there is a possible integer overflow. This could lead to... High Unreviewed
CVE-2018-9348 was published Nov 19, 2024
In IMSA_Recv_Thread and VT_IMCB_Thread of ImsaClient.cpp and VideoTelephony.c, there is a... High Unreviewed
CVE-2018-9366 was published Nov 19, 2024
In the Linux kernel, the following vulnerability has been resolved: mm/damon/core: avoid... Moderate Unreviewed
CVE-2024-50270 was published Nov 19, 2024
Integer Overflow or Wraparound vulnerability in Cesanta Mongoose Web Server v7.14 allows an... High Unreviewed
CVE-2024-42384 was published Nov 18, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database