Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,800
Erlang
36
GitHub Actions
29
Go
2,380
Maven
5,000+
npm
4,005
NuGet
720
pip
3,805
Pub
12
RubyGems
927
Rust
986
Swift
38
Unreviewed advisories
All unreviewed
5,000+

39 advisories

Loading
A buffer copy without checking size of input vulnerability has been reported to affect several... Low Unreviewed
CVE-2023-45037 was published Feb 2, 2024
Open Robotics Robotic Operating Sytstem 2 (ROS2) and Nav2 humble versions were discovered to... Low Unreviewed
CVE-2024-25196 was published Feb 20, 2024
Vyper's `_abi_decode` vulnerable to Memory Overflow Low
CVE-2024-26149 was published for vyper (pip) Feb 26, 2024
minaminao-osec
A Buffer Copy without Checking Size of Input issue affecting the v2_sdk_service running on a set... Low Unreviewed
CVE-2023-6948 was published Apr 2, 2024
Buffer Overflow vulnerability in the get_var_integer function in mqtt_parser.c in NanoMQ 0.21.7... Low Unreviewed
CVE-2024-31040 was published Apr 17, 2024
Buffer Overflow vulnerability in Ffmpeg v.N113007-g8d24a28d06 allows a local attacker to execute... Low Unreviewed
CVE-2023-51796 was published Apr 19, 2024
Nokogiri updates packaged libxml2 to v2.12.7 to resolve CVE-2024-34459 Low
GHSA-r95h-9x8f-r3f7 was published for nokogiri (RubyGems) May 13, 2024
CommanderStorm postmodern
A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. An... Low Unreviewed
CVE-2024-45619 was published Sep 4, 2024
A vulnerability was found in the pkcs15-init tool in OpenSC. An attacker could use a crafted USB... Low Unreviewed
CVE-2024-45620 was published Sep 4, 2024
A buffer overflow vulnerability in the packet handoff plugin allows an attacker to overwrite... Low Unreviewed
CVE-2024-10106 was published Jan 9, 2025
A vulnerability has been found in GNU Binutils 2.43 and classified as problematic. Affected by... Low Unreviewed
CVE-2025-1147 was published Feb 10, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through buffer overflow. Low Unreviewed
CVE-2025-22897 was published Mar 4, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through buffer overflow. Low Unreviewed
CVE-2025-23234 was published Mar 4, 2025
in OpenHarmony v5.0.3 and prior versions allow a local attacker cause DOS through buffer overflow. Low Unreviewed
CVE-2025-25052 was published May 6, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database