Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
44
GitHub Actions
43
Go
3,181
Maven
5,000+
npm
5,000+
NuGet
863
pip
4,474
Pub
12
RubyGems
991
Rust
1,185
Swift
51
Unreviewed advisories
All unreviewed
5,000+

534 advisories

Loading
An issue was discovered in FRRouting FRR through 9.0. There is an out-of-bounds read in... Critical Unreviewed
CVE-2023-41359 was published Aug 29, 2023
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 15... Critical Unreviewed
CVE-2023-37285 was published Jul 28, 2023
An issue was discovered in the Linux kernel before 6.3.9. ksmbd does not validate the SMB request... Critical Unreviewed
CVE-2023-38430 was published Jul 18, 2023
An issue was discovered in the Linux kernel before 6.3.8. fs/smb/server/connection.c in ksmbd... Critical Unreviewed
CVE-2023-38431 was published Jul 18, 2023
An issue was discovered in the Linux kernel before 6.3.4. fs/ksmbd/smb2pdu.c in ksmbd does not... Critical Unreviewed
CVE-2023-38428 was published Jul 18, 2023
An issue was discovered in the Linux kernel before 6.3.8. fs/smb/server/smb2pdu.c in ksmbd has an... Critical Unreviewed
CVE-2023-38427 was published Jul 18, 2023
An issue was discovered in the Linux kernel before 6.3.4. ksmbd has an out-of-bounds read in... Critical Unreviewed
CVE-2023-38426 was published Jul 18, 2023
An issue was discovered in the Linux kernel before 6.3.10. fs/smb/server/smb2misc.c in ksmbd does... Critical Unreviewed
CVE-2023-38432 was published Jul 18, 2023
An arbitrary code execution vulnerability contained in Rockwell Automation's Arena Simulation... Critical Unreviewed
CVE-2023-29461 was published Jul 6, 2023
An arbitrary code execution vulnerability contained in Rockwell Automation's Arena Simulation... Critical Unreviewed
CVE-2023-29460 was published Jul 6, 2023
An out of bounds read exists in libjxl. An attacker using a specifically crafted file could cause... Critical Unreviewed
CVE-2023-0645 was published Jul 6, 2023
Vulnerability of missing input length verification in the distributed file system. Successful... Critical Unreviewed
CVE-2023-37240 was published Jul 6, 2023
Fortra Globalscape EFT versions before 8.1.0.16 suffer from an out of bounds memory read in their... Critical Unreviewed
CVE-2023-2989 was published Jun 22, 2023
In btm_ble_periodic_adv_sync_lost of btm_ble_gap.cc, there is a possible remote code execution... Critical Unreviewed
CVE-2023-21130 was published Jun 15, 2023
The facial recognition TA of some products has the out-of-bounds memory read vulnerability.... Critical Unreviewed
CVE-2022-48479 was published May 26, 2023
The `news` MonkeyC operation code in CIQ API version 1.0.0 through 4.1.7 fails to check that... Critical Unreviewed
CVE-2023-23301 was published May 23, 2023
In Eclipse Openj9 before version 0.38.0, in the implementation of the shared cache (which is... Critical Unreviewed
CVE-2023-2597 was published May 22, 2023
The HwPCAssistant module has the out-of-bounds read/write vulnerability. Successful exploitation... Critical Unreviewed
CVE-2022-48312 was published Apr 16, 2023
This vulnerability allows remote attackers to disclose sensitive information on affected... Critical Unreviewed
CVE-2022-23123 was published Mar 28, 2023
This vulnerability allows remote attackers to disclose sensitive information on affected... Critical Unreviewed
CVE-2022-23124 was published Mar 28, 2023
TensorFlow has a heap out-of-buffer read vulnerability in the QuantizeAndDequantize operation Critical
CVE-2023-25668 was published for tensorflow (pip) Mar 24, 2023
Deno improperly handles resizable ArrayBuffer Critical
CVE-2023-28445 was published for Deno (Rust) Mar 23, 2023
lucacasonato Credited to lucacasonato, JohnTitor, and nipunn1313 JohnTitor JohnTitor
nipunn1313 nipunn1313
wasmtime vulnerable to guest-controlled out-of-bounds read/write on x86_64 Critical
CVE-2023-26489 was published for cranelift-codegen (Rust) Mar 9, 2023
alexcrichton Credited to alexcrichton
In Gluster GlusterFS 11.0, there is an xlators/mount/fuse/src/fuse-bridge.c notify stack-based... Critical Unreviewed
CVE-2023-26253 was published Feb 21, 2023
openssl-src contains Read Buffer Overflow in X.509 Name Constraint Critical
CVE-2022-4203 was published for openssl-src (Rust) Feb 8, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database