Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+

1,852 advisories

Loading
Memory corruption in Modem while processing security related configuration before AS Security... Critical Unreviewed
CVE-2023-24855 was published Oct 3, 2023
Memory Corruption in Data Modem while making a MO call or MT VOLTE call. Critical Unreviewed
CVE-2023-22385 was published Oct 3, 2023
Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while... Critical Unreviewed
CVE-2022-40514 was published Feb 12, 2023
Memory corruption in WLAN Firmware while parsing a NAN management frame carrying a S3 attribute. Critical Unreviewed
CVE-2023-33045 was published Nov 14, 2023
Memory corruption due to buffer copy without checking size of input in Audio while voice call... Critical Unreviewed
CVE-2022-40510 was published Aug 8, 2023
Memory corruption in TZ Secure OS while requesting a memory allocation from TA region. Critical Unreviewed
CVE-2023-33032 was published Jan 2, 2024
Exim AUTH Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows... Critical Unreviewed
CVE-2023-42115 was published May 3, 2024
LZ4 vulnerable to Out-of-bounds Write Critical
CVE-2014-125026 was published for github.com/cloudflare/golz4 (Go) Dec 28, 2022
CWE-787: Out-of-bounds Write vulnerability exists that could result in an authentication bypass... Critical Unreviewed
CVE-2024-37036 was published Jun 12, 2024
An issue was discovered in the captive portal in OpenNDS before version 10.1.3. get_query in... Critical Unreviewed
CVE-2023-41101 was published Nov 17, 2023
Vulnerability in the Oracle Solaris product of Oracle Systems (component: Pluggable... Critical Unreviewed
CVE-2020-14871 was published May 24, 2022
In the Linux kernel, the following vulnerability has been resolved: drm/sched: Avoid data... Critical Unreviewed
CVE-2021-47354 was published May 21, 2024
In modem, there is a possible out of bounds write due to improper input invalidation. This could... Critical Unreviewed
CVE-2024-20067 was published Jun 3, 2024
This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is... Critical Unreviewed
CVE-2023-38545 was published Oct 18, 2023
In circ_read of link_device_memory_legacy.c, there is a possible out of bounds write due to an... Critical Unreviewed
CVE-2024-32905 was published Jun 13, 2024
The SMTP Listener of Secure Email Gateway from Cellopoint does not properly validate user input,... Critical Unreviewed
CVE-2024-6744 was published Jul 15, 2024
Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers... Critical Unreviewed
CVE-2022-20699 was published Feb 11, 2022
Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers... Critical Unreviewed
CVE-2022-20700 was published Feb 11, 2022
Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers... Critical Unreviewed
CVE-2022-20701 was published Feb 11, 2022
Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers... Critical Unreviewed
CVE-2022-20708 was published Feb 11, 2022
A memory corruption vulnerability exists in the Windows Server DHCP service when an attacker... Critical Unreviewed
CVE-2019-1213 was published May 24, 2022
Dnsmasq 2.86 has a heap-based buffer overflow in print_mac (called from log_packet and dhcp_reply). Critical Unreviewed
CVE-2021-45956 was published Jan 2, 2022
Tenda AC10 version US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via... Critical Unreviewed
CVE-2023-45481 was published Nov 29, 2023
An attacker sending specially crafted data packets to the Mobile Device Server can cause memory... Critical Unreviewed
CVE-2023-46223 was published Dec 19, 2023
Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the mitInterface parameter of... Critical Unreviewed
CVE-2024-28535 was published Mar 12, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database