GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
1,843 advisories
Filter by severity
In dhd_prot_flowrings_pool_release of dhd_msgbuf.c, there is a possible outcof bounds write due...
Critical
Unreviewed
CVE-2024-47038
was published
Dec 18, 2024
The issue was addressed with improved memory handling. This issue is fixed in watchOS 11.2,...
Critical
Unreviewed
CVE-2024-54534
was published
Dec 12, 2024
The issue was addressed with improved bounds checks. This issue is fixed in iOS 18.1 and iPadOS...
Critical
Unreviewed
CVE-2024-44242
was published
Dec 12, 2024
In the Mullvad VPN client 2024.6 (Desktop), 2024.8 (iOS), and 2024.8-beta1 (Android), the...
Critical
Unreviewed
CVE-2024-55884
was published
Dec 12, 2024
In sg_remove_scat of scsi/sg.c, there is a possible memory corruption due to
an unusual root...
Critical
Unreviewed
CVE-2018-9416
was published
Dec 5, 2024
An unauthenticated attacker can trigger a stack based buffer overflow in the DP Service (TCP port...
Critical
Unreviewed
CVE-2024-52544
was published
Dec 3, 2024
In prop2cfg of btif_storage.cc, there is a possible out of bounds write due to an incorrect...
Critical
Unreviewed
CVE-2018-9430
was published
Dec 3, 2024
In the deserialization constructor of NanoAppFilter.java, there is a possible loss of data due to...
Critical
Unreviewed
CVE-2018-9471
was published
Nov 20, 2024
In process_service_attr_req and process_service_search_attr_req of sdp_server.cc, there is an out...
Critical
Unreviewed
CVE-2018-9479
was published
Nov 20, 2024
In process_service_attr_req and process_service_search_attr_req of sdp_server.cc, there is an out...
Critical
Unreviewed
CVE-2018-9478
was published
Nov 20, 2024
In impeg2d_mc_fullx_fully of impeg2d_mc.c there is a possible out of bound write due to missing...
Critical
Unreviewed
CVE-2018-9341
was published
Nov 19, 2024
A heap buffer overflow could be triggered by sending a specific packet to TCP port 7700.
Critical
Unreviewed
CVE-2023-29125
was published
Nov 5, 2024
Out of bounds write in Dawn in Google Chrome prior to 130.0.6723.92 allowed a remote attacker to...
Critical
Unreviewed
CVE-2024-10487
was published
Oct 30, 2024
Memory safety bugs present in Firefox 131, Firefox ESR 128.3, and Thunderbird 128.3. Some of...
Critical
Unreviewed
CVE-2024-10467
was published
Oct 29, 2024
Mbed TLS 3.5.x through 3.6.x before 3.6.2 has a buffer underrun in pkwrite when writing an opaque...
Critical
Unreviewed
CVE-2024-49195
was published
Oct 15, 2024
HDF5 library through 1.14.3 has memory corruption in H5A__close resulting in the corruption of...
Critical
Unreviewed
CVE-2024-32608
was published
Oct 9, 2024
In wlan driver, there is a possible out of bounds write due to improper input validation. This...
Critical
Unreviewed
CVE-2024-20101
was published
Oct 7, 2024
In wlan firmware, there is a possible out of bounds write due to improper input validation. This...
Critical
Unreviewed
CVE-2024-20103
was published
Oct 7, 2024
In wlan driver, there is a possible out of bounds write due to improper input validation. This...
Critical
Unreviewed
CVE-2024-20100
was published
Oct 7, 2024
DrayTek Vigor310 devices through 4.3.2.6 allow a remote attacker to execute arbitrary code via...
Critical
Unreviewed
CVE-2024-41593
was published
Oct 3, 2024
Secure Email Gateway from Cellopoint has Buffer Overflow Vulnerability in authentication process....
Critical
Unreviewed
CVE-2024-9043
was published
Sep 20, 2024
libfreeimage in FreeImage 3.4.0 through 3.18.0 has a stack-based buffer overflow in the PluginXPM...
Critical
Unreviewed
CVE-2024-31570
was published
Sep 19, 2024
A stack-based buffer overflow vulnerability exists in the OpenPLC Runtime EtherNet/IP parser...
Critical
Unreviewed
CVE-2024-34026
was published
Sep 18, 2024
The vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC...
Critical
Unreviewed
CVE-2024-38812
was published
Sep 17, 2024
The web service of certain models of D-Link wireless routers contains a Stack-based Buffer...
Critical
Unreviewed
CVE-2024-45695
was published
Sep 16, 2024
ProTip!
Advisories are also available from the
GraphQL API