GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
1,852 advisories
Filter by severity
Mbed TLS 3.5.x through 3.6.x before 3.6.2 has a buffer underrun in pkwrite when writing an opaque...
Critical
Unreviewed
CVE-2024-49195
was published
Oct 15, 2024
HDF5 library through 1.14.3 has memory corruption in H5A__close resulting in the corruption of...
Critical
Unreviewed
CVE-2024-32608
was published
Oct 9, 2024
In wlan driver, there is a possible out of bounds write due to improper input validation. This...
Critical
Unreviewed
CVE-2024-20101
was published
Oct 7, 2024
In wlan firmware, there is a possible out of bounds write due to improper input validation. This...
Critical
Unreviewed
CVE-2024-20103
was published
Oct 7, 2024
In wlan driver, there is a possible out of bounds write due to improper input validation. This...
Critical
Unreviewed
CVE-2024-20100
was published
Oct 7, 2024
DrayTek Vigor310 devices through 4.3.2.6 allow a remote attacker to execute arbitrary code via...
Critical
Unreviewed
CVE-2024-41593
was published
Oct 3, 2024
Secure Email Gateway from Cellopoint has Buffer Overflow Vulnerability in authentication process....
Critical
Unreviewed
CVE-2024-9043
was published
Sep 20, 2024
libfreeimage in FreeImage 3.4.0 through 3.18.0 has a stack-based buffer overflow in the PluginXPM...
Critical
Unreviewed
CVE-2024-31570
was published
Sep 19, 2024
A stack-based buffer overflow vulnerability exists in the OpenPLC Runtime EtherNet/IP parser...
Critical
Unreviewed
CVE-2024-34026
was published
Sep 18, 2024
The vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC...
Critical
Unreviewed
CVE-2024-38812
was published
Sep 17, 2024
The web service of certain models of D-Link wireless routers contains a Stack-based Buffer...
Critical
Unreviewed
CVE-2024-45695
was published
Sep 16, 2024
Micron Crucial MX500 Series Solid State Drives M3CR046 is vulnerable to Buffer Overflow, which...
Critical
Unreviewed
CVE-2024-42642
was published
Sep 4, 2024
Memory safety bugs present in Firefox 129. Some of these bugs showed evidence of memory...
Critical
Unreviewed
CVE-2024-8389
was published
Sep 3, 2024
The JavaScript garbage collector could mis-color cross-compartment objects if OOM conditions were...
Critical
Unreviewed
CVE-2024-8384
was published
Sep 3, 2024
Memory safety bugs present in Firefox 129, Firefox ESR 128.1, and Thunderbird 128.1. Some of...
Critical
Unreviewed
CVE-2024-8387
was published
Sep 3, 2024
HTMLDOC before 1.9.19 has an out-of-bounds write in parse_paragraph in ps-pdf.cxx because of an...
Critical
Unreviewed
CVE-2024-45508
was published
Sep 2, 2024
Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.city.vlan parameter in the function...
Critical
Unreviewed
CVE-2024-44551
was published
Aug 26, 2024
Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.city.vlan parameter in the function...
Critical
Unreviewed
CVE-2024-44555
was published
Aug 26, 2024
A stack overflow in FAST FW300R v1.3.13 Build 141023 Rel.61347n allows attackers to execute...
Critical
Unreviewed
CVE-2024-41285
was published
Aug 26, 2024
An issue in newlib v.4.3.0 allows an attacker to execute arbitrary code via the time unit scaling...
Critical
Unreviewed
CVE-2024-30949
was published
Aug 20, 2024
Out-of-bounds write in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers...
Critical
Unreviewed
CVE-2024-23497
was published
Aug 14, 2024
In venc, there is a possible out of bounds write due to a missing bounds check. This could lead...
Critical
Unreviewed
CVE-2024-20083
was published
Aug 14, 2024
Stack-based buffer overflow vulnerabilities affecting Vonets
industrial wifi bridge relays...
Critical
Unreviewed
CVE-2024-39791
was published
Aug 12, 2024
There are vulnerabilities in the Soft AP Daemon Service which could allow a threat actor to...
Critical
Unreviewed
CVE-2024-42394
was published
Aug 6, 2024
There is a vulnerability in the AP Certificate Management Service which could allow a threat...
Critical
Unreviewed
CVE-2024-42395
was published
Aug 6, 2024
ProTip!
Advisories are also available from the
GraphQL API