Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+

1,852 advisories

Loading
An issue was discovered in Envoy 1.12.0. An untrusted remote client may send HTTP/2 requests that... Critical Unreviewed
CVE-2019-18801 was published May 24, 2022
Tenda F1202 V1.0BR_V1.2.0.20(408), FH1202_V1.2.0.19_EN were discovered to contain a stack... Critical Unreviewed
CVE-2023-37721 was published Jul 14, 2023
TP-LINK TL-WR886N V7.0_3.0.14_Build_221115_Rel.56908n.bin was discovered to contain a stack... Critical Unreviewed
CVE-2023-46526 was published Oct 25, 2023
Buffer Overflow vulnerability in DI-7003GV2.D1 v.23.08.25D1 and before, DI-7100G+V2.D1 v.23.08... Critical Unreviewed
CVE-2023-45576 was published Oct 16, 2023
A stack-based buffer overflow vulnerability exists in the httpd gwcfg.cgi get functionality of... Critical Unreviewed
CVE-2023-34346 was published Oct 11, 2023
Buffer overflow in IPP sides attribute process of Office / Small Office Multifunction Printers... Critical Unreviewed
CVE-2023-0856 was published May 11, 2023
In Weintek's cMT3000 HMI Web CGI device, the cgi-bin codesys.cgi contains a stack-based... Critical Unreviewed
CVE-2023-43492 was published Oct 19, 2023
Tenda AC10 v4 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via... Critical Unreviewed
CVE-2023-40902 was published Aug 24, 2023
TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the... Critical Unreviewed
CVE-2023-46555 was published Oct 25, 2023
TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the... Critical Unreviewed
CVE-2023-46557 was published Oct 25, 2023
dpic 2021.04.10 has a Heap Buffer Overflow in themakevar() function in dpic.y Critical Unreviewed
CVE-2021-33388 was published Aug 22, 2023
In ZeroMQ libzmq before 4.0.9, 4.1.x before 4.1.7, and 4.2.x before 4.3.2, a remote,... Critical Unreviewed
CVE-2019-13132 was published May 24, 2022
Memory corruption in modem due to improper length check while copying into memory Critical Unreviewed
CVE-2022-25729 was published Feb 12, 2023
Memory correction in modem due to buffer overwrite during coap connection Critical Unreviewed
CVE-2022-25678 was published Apr 13, 2023
Memory corruption in modem due to buffer overwrite while building an IPv6 multicast address based... Critical Unreviewed
CVE-2022-25740 was published Apr 13, 2023
Memory corruption in QESL while processing payload from external ESL device to firmware. Critical Unreviewed
CVE-2023-28561 was published Aug 8, 2023
Memory corruption in WLAN Firmware while parsing receieved GTK Keys in GTK KDE. Critical Unreviewed
CVE-2023-28581 was published Sep 5, 2023
Memory Corruption in Multi-mode Call Processor while processing bit mask API. Critical Unreviewed
CVE-2023-22388 was published Nov 14, 2023
A vulnerability in the lsi53c895a device affects the latest version of qemu. A DMA-MMIO... Critical Unreviewed
CVE-2023-0330 was published Mar 7, 2023
A flaw was found in libcaca. A buffer overflow of export.c in function export_troff might lead to... Critical Unreviewed
CVE-2021-30499 was published May 24, 2022
A flaw was found in libcaca. A heap buffer overflow in export.c in function export_tga might lead... Critical Unreviewed
CVE-2021-30498 was published May 24, 2022
Memory corruption due to stack based buffer overflow in WLAN having invalid WNM frame length. Critical Unreviewed
CVE-2022-33279 was published Feb 12, 2023
Memory corruption while handling payloads from remote ESL. Critical Unreviewed
CVE-2023-28562 was published Sep 5, 2023
Memory corruption in HLOS while running playready use-case. Critical Unreviewed
CVE-2023-33030 was published Jan 2, 2024
Memory corruption in Modem while processing security related configuration before AS Security... Critical Unreviewed
CVE-2023-24855 was published Oct 3, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database