Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
1,996
Maven
5,000+
npm
3,709
NuGet
661
pip
3,349
Pub
11
RubyGems
885
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+

2,178 advisories

Loading
In xmlMemStrdupLoc of xmlmemory.c, there is a possible out-of-bounds write due to an integer... High Unreviewed
CVE-2018-9472 was published Nov 20, 2024
ASA-2024-010: cosmossdk.io/math: Mismatched bit-length validation in sdk.Int and sdk.Dec can lead to panic High
GHSA-7225-m954-23v7 was published for cosmossdk.io/math (Go) Nov 20, 2024
In SMF_ParseMetaEvent of eas_smf.c, there is a possible integer overflow. This could lead to... High Unreviewed
CVE-2018-9348 was published Nov 19, 2024
Integer Overflow or Wraparound vulnerability in Cesanta Mongoose Web Server v7.14 allows an... High Unreviewed
CVE-2024-42384 was published Nov 18, 2024
Bitcoin Core before 22.0 has a CAddrMan nIdCount integer overflow and resultant assertion failure... Moderate Unreviewed
CVE-2024-52919 was published Nov 18, 2024
Bitcoin Core before 0.21.0 allows a network split that is resultant from an integer overflow ... High Unreviewed
CVE-2024-52912 was published Nov 18, 2024
A vulnerability in the Modbus preprocessor of the Snort detection engine could allow an... High Unreviewed
CVE-2022-20685 was published Nov 15, 2024
A local user can bypass the OpenAFS PAG (Process Authentication Group) throttling mechanism in... High Unreviewed
CVE-2024-10394 was published Nov 14, 2024
Integer overflow for some Intel(R) VPL software before version 24.1.4 may allow an authenticated... Low Unreviewed
CVE-2024-21783 was published Nov 13, 2024
Windows Registry Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-43641 was published Nov 12, 2024
Windows NT OS Kernel Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-43623 was published Nov 12, 2024
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2024-43628 was published Nov 12, 2024
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2024-43635 was published Nov 12, 2024
In Eclipse OpenJ9 versions up to 0.47, the JNI function GetStringUTFLength may return an... Low Unreviewed
CVE-2024-10917 was published Nov 11, 2024
An issue was discovered in base/gsdevice.c in Artifex Ghostscript before 10.04.0. An integer... High Unreviewed
CVE-2024-46953 was published Nov 11, 2024
WeeChat before 4.4.2 has an integer overflow and resultant buffer overflow at core/core-string.c... Critical Unreviewed
CVE-2024-46613 was published Nov 10, 2024
GSL (GNU Scientific Library) through 2.8 has an integer signedness error in gsl_siman_solve_many... Low Unreviewed
CVE-2024-50610 was published Oct 28, 2024
In vring_size of external/headers/include/virtio/virtio_ring.h, there is a possible out of bounds... High Unreviewed
CVE-2024-47024 was published Oct 25, 2024
In ffu_flash_pack of ffu.c, there is a possible out of bounds read due to an integer overflow.... Moderate Unreviewed
CVE-2024-47028 was published Oct 25, 2024
Xlight FTP Server <3.9.4.3 has an integer overflow vulnerability in the packet parsing logic of... Critical Unreviewed
CVE-2024-46483 was published Oct 23, 2024
Integer Overflow in fast_ping.c in SmartDNS Release46 allows remote attackers to cause a Denial... High Unreviewed
CVE-2024-42643 was published Oct 23, 2024
In the Linux kernel, the following vulnerability has been resolved: libbpf: Handle size overflow... High Unreviewed
CVE-2022-49030 was published Oct 21, 2024
In the Linux kernel, the following vulnerability has been resolved: media: v4l2-dv-timings.c:... Moderate Unreviewed
CVE-2022-48987 was published Oct 21, 2024
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix u8... Moderate Unreviewed
CVE-2022-48947 was published Oct 21, 2024
In the Linux kernel, the following vulnerability has been resolved: net: napi: Prevent overflow... Moderate Unreviewed
CVE-2024-50018 was published Oct 21, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database