GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 27,112
Composer 5,317
Erlang 42
GitHub Actions 43
Go 3,153
Maven 6,299
npm 5,105
NuGet 861
pip 4,451
Pub 12
RubyGems 991
Rust 1,179
Swift 50

Unreviewed advisories

All unreviewed 293,208

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

533 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An inconsistent comparator in xslt/txNodeSorter could have resulted in potentially exploitable... Critical Unreviewed

CVE-2025-1932 was published Mar 4, 2025

This issue was addressed through improved state management. This issue is fixed in visionOS 2.3,... Critical Unreviewed

CVE-2025-24162 was published Jan 28, 2025

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Critical Unreviewed

CVE-2025-24093 was published Jan 28, 2025

An XML External Entity (XXE) injection vulnerability in Intersec Geosafe-ea 2022.12, 2022.13, and... Critical Unreviewed

CVE-2024-35532 was published Jan 7, 2025

In isSlotMarkedSuccessful of BootControl.cpp, there is a possible out of bounds read due to a... Critical Unreviewed

CVE-2024-47039 was published Dec 18, 2024

An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in... Critical Unreviewed

CVE-2024-54506 was published Dec 12, 2024

In prop2cfg of btif_storage.cc, there is a possible out of bounds write due to an incorrect... Critical Unreviewed

CVE-2018-9430 was published Dec 3, 2024

FFmpeg n6.1.1 has an Out-of-bounds Read via libavcodec/ppc/vp8dsp_altivec.c, static const vec_s8... Critical Unreviewed

CVE-2024-35367 was published Nov 29, 2024

In multiple functions that process 802.11 frames, out-of-bounds reads can occur due to... Critical Unreviewed

CVE-2017-17772 was published Nov 26, 2024

An insufficient boundary validation in the USB code could lead to an out-of-bounds read on the... Critical Unreviewed

CVE-2024-41721 was published Sep 20, 2024

In function MatchDomainName(), input param str is treated as a NULL terminated string despite... Critical Unreviewed

CVE-2024-5991 was published Aug 27, 2024

Editor code failed to check an attribute value. This could have led to an out-of-bounds read.... Critical Unreviewed

CVE-2024-7522 was published Aug 6, 2024

Clipboard code failed to check the index on an array access. This could have lead to an out-of... Critical Unreviewed

CVE-2024-6606 was published Jul 9, 2024

In MIT Kerberos 5 (aka krb5) before 1.21.3, an attacker can cause invalid memory reads during GSS... Critical Unreviewed

CVE-2024-37371 was published Jun 29, 2024

Issue summary: Calling the OpenSSL API function SSL_select_next_proto with an empty supported... Critical Unreviewed

CVE-2024-5535 was published Jun 27, 2024

Libarchive before 3.7.4 allows name out-of-bounds access when a ZIP archive has an empty-name... Critical Unreviewed

CVE-2024-37407 was published Jun 8, 2024

robdns commit d76d2e6 was discovered to contain a heap overflow via the component block->filename... Critical Unreviewed

CVE-2024-24192 was published Jun 7, 2024

In the Linux kernel, the following vulnerability has been resolved: tracing: Correct the length... Critical Unreviewed

CVE-2021-47274 was published May 21, 2024

HDF5 Library through 1.14.3 contains a out-of-bounds read operation in H5FL_arr_malloc in H5FL.c ... Critical Unreviewed

CVE-2024-32622 was published May 14, 2024

Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow vulnerability located via the page... Critical Unreviewed

CVE-2024-32286 was published Apr 17, 2024

Tenda AC7V1.0 v15.03.06.44 firmware has a stack overflow vulnerability via the PPW parameter in... Critical Unreviewed

CVE-2024-32301 was published Apr 17, 2024

JFreeChart v1.5.4 was discovered to contain a NullPointerException via the component /chart... Critical Unreviewed

CVE-2024-22949 was published Apr 9, 2024

Apfloat v1.10.1 was discovered to contain a stack overflow via the component org.apfloat.internal... Critical Unreviewed

CVE-2024-23086 was published Apr 8, 2024

Due to length check, an attacker with privilege access on a Linux Nonsecure operating system can... Critical Unreviewed

CVE-2024-22004 was published Apr 5, 2024

Buffer Overflow vulnerability in CSAPP_Lab CSAPP Lab3 15-213 Fall 20xx allows a remote attacker... Critical Unreviewed

CVE-2024-28515 was published Apr 3, 2024

Previous 12…22 Next

Previous 1 2 3 4 5 … 21 22 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

533 advisories