GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
1,852 advisories
Filter by severity
An issue was discovered in Envoy 1.12.0. An untrusted remote client may send HTTP/2 requests that...
Critical
Unreviewed
CVE-2019-18801
was published
May 24, 2022
Tenda F1202 V1.0BR_V1.2.0.20(408), FH1202_V1.2.0.19_EN were discovered to contain a stack...
Critical
Unreviewed
CVE-2023-37721
was published
Jul 14, 2023
TP-LINK TL-WR886N V7.0_3.0.14_Build_221115_Rel.56908n.bin was discovered to contain a stack...
Critical
Unreviewed
CVE-2023-46526
was published
Oct 25, 2023
Buffer Overflow vulnerability in DI-7003GV2.D1 v.23.08.25D1 and before, DI-7100G+V2.D1 v.23.08...
Critical
Unreviewed
CVE-2023-45576
was published
Oct 16, 2023
A stack-based buffer overflow vulnerability exists in the httpd gwcfg.cgi get functionality of...
Critical
Unreviewed
CVE-2023-34346
was published
Oct 11, 2023
Buffer overflow in IPP sides attribute process of Office / Small Office Multifunction Printers...
Critical
Unreviewed
CVE-2023-0856
was published
May 11, 2023
In Weintek's cMT3000 HMI Web CGI device, the cgi-bin codesys.cgi contains a stack-based...
Critical
Unreviewed
CVE-2023-43492
was published
Oct 19, 2023
Tenda AC10 v4 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via...
Critical
Unreviewed
CVE-2023-40902
was published
Aug 24, 2023
TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the...
Critical
Unreviewed
CVE-2023-46555
was published
Oct 25, 2023
TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the...
Critical
Unreviewed
CVE-2023-46557
was published
Oct 25, 2023
dpic 2021.04.10 has a Heap Buffer Overflow in themakevar() function in dpic.y
Critical
Unreviewed
CVE-2021-33388
was published
Aug 22, 2023
In ZeroMQ libzmq before 4.0.9, 4.1.x before 4.1.7, and 4.2.x before 4.3.2, a remote,...
Critical
Unreviewed
CVE-2019-13132
was published
May 24, 2022
Memory corruption in modem due to improper length check while copying into memory
Critical
Unreviewed
CVE-2022-25729
was published
Feb 12, 2023
Memory correction in modem due to buffer overwrite during coap connection
Critical
Unreviewed
CVE-2022-25678
was published
Apr 13, 2023
Memory corruption in modem due to buffer overwrite while building an IPv6 multicast address based...
Critical
Unreviewed
CVE-2022-25740
was published
Apr 13, 2023
Memory corruption in QESL while processing payload from external ESL device to firmware.
Critical
Unreviewed
CVE-2023-28561
was published
Aug 8, 2023
Memory corruption in WLAN Firmware while parsing receieved GTK Keys in GTK KDE.
Critical
Unreviewed
CVE-2023-28581
was published
Sep 5, 2023
Memory Corruption in Multi-mode Call Processor while processing bit mask API.
Critical
Unreviewed
CVE-2023-22388
was published
Nov 14, 2023
A vulnerability in the lsi53c895a device affects the latest version of qemu. A DMA-MMIO...
Critical
Unreviewed
CVE-2023-0330
was published
Mar 7, 2023
A flaw was found in libcaca. A buffer overflow of export.c in function export_troff might lead to...
Critical
Unreviewed
CVE-2021-30499
was published
May 24, 2022
A flaw was found in libcaca. A heap buffer overflow in export.c in function export_tga might lead...
Critical
Unreviewed
CVE-2021-30498
was published
May 24, 2022
Memory corruption due to stack based buffer overflow in WLAN having invalid WNM frame length.
Critical
Unreviewed
CVE-2022-33279
was published
Feb 12, 2023
Memory corruption while handling payloads from remote ESL.
Critical
Unreviewed
CVE-2023-28562
was published
Sep 5, 2023
Memory corruption in HLOS while running playready use-case.
Critical
Unreviewed
CVE-2023-33030
was published
Jan 2, 2024
Memory corruption in Modem while processing security related configuration before AS Security...
Critical
Unreviewed
CVE-2023-24855
was published
Oct 3, 2023
ProTip!
Advisories are also available from the
GraphQL API