GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
1,852 advisories
Filter by severity
Memory corruption in Modem while processing security related configuration before AS Security...
Critical
Unreviewed
CVE-2023-24855
was published
Oct 3, 2023
Memory Corruption in Data Modem while making a MO call or MT VOLTE call.
Critical
Unreviewed
CVE-2023-22385
was published
Oct 3, 2023
Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while...
Critical
Unreviewed
CVE-2022-40514
was published
Feb 12, 2023
Memory corruption in WLAN Firmware while parsing a NAN management frame carrying a S3 attribute.
Critical
Unreviewed
CVE-2023-33045
was published
Nov 14, 2023
Memory corruption due to buffer copy without checking size of input in Audio while voice call...
Critical
Unreviewed
CVE-2022-40510
was published
Aug 8, 2023
Memory corruption in TZ Secure OS while requesting a memory allocation from TA region.
Critical
Unreviewed
CVE-2023-33032
was published
Jan 2, 2024
Exim AUTH Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows...
Critical
Unreviewed
CVE-2023-42115
was published
May 3, 2024
LZ4 vulnerable to Out-of-bounds Write
Critical
CVE-2014-125026
was published
for
github.com/cloudflare/golz4
(Go)
Dec 28, 2022
CWE-787: Out-of-bounds Write vulnerability exists that could result in an authentication bypass...
Critical
Unreviewed
CVE-2024-37036
was published
Jun 12, 2024
An issue was discovered in the captive portal in OpenNDS before version 10.1.3. get_query in...
Critical
Unreviewed
CVE-2023-41101
was published
Nov 17, 2023
Vulnerability in the Oracle Solaris product of Oracle Systems (component: Pluggable...
Critical
Unreviewed
CVE-2020-14871
was published
May 24, 2022
In the Linux kernel, the following vulnerability has been resolved:
drm/sched: Avoid data...
Critical
Unreviewed
CVE-2021-47354
was published
May 21, 2024
In modem, there is a possible out of bounds write due to improper input invalidation. This could...
Critical
Unreviewed
CVE-2024-20067
was published
Jun 3, 2024
This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy
handshake.
When curl is...
Critical
Unreviewed
CVE-2023-38545
was published
Oct 18, 2023
In circ_read of link_device_memory_legacy.c, there is a possible out of bounds write due to an...
Critical
Unreviewed
CVE-2024-32905
was published
Jun 13, 2024
The SMTP Listener of Secure Email Gateway from Cellopoint does not properly validate user input,...
Critical
Unreviewed
CVE-2024-6744
was published
Jul 15, 2024
Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers...
Critical
Unreviewed
CVE-2022-20699
was published
Feb 11, 2022
Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers...
Critical
Unreviewed
CVE-2022-20700
was published
Feb 11, 2022
Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers...
Critical
Unreviewed
CVE-2022-20701
was published
Feb 11, 2022
Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers...
Critical
Unreviewed
CVE-2022-20708
was published
Feb 11, 2022
A memory corruption vulnerability exists in the Windows Server DHCP service when an attacker...
Critical
Unreviewed
CVE-2019-1213
was published
May 24, 2022
Dnsmasq 2.86 has a heap-based buffer overflow in print_mac (called from log_packet and dhcp_reply).
Critical
Unreviewed
CVE-2021-45956
was published
Jan 2, 2022
Tenda AC10 version US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via...
Critical
Unreviewed
CVE-2023-45481
was published
Nov 29, 2023
An attacker sending specially crafted data packets to the Mobile Device Server can cause memory...
Critical
Unreviewed
CVE-2023-46223
was published
Dec 19, 2023
Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the mitInterface parameter of...
Critical
Unreviewed
CVE-2024-28535
was published
Mar 12, 2024
ProTip!
Advisories are also available from the
GraphQL API