Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,016
Maven
5,000+
npm
3,721
NuGet
662
pip
3,400
Pub
11
RubyGems
890
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+

210 advisories

Loading
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the ... Moderate Unreviewed
CVE-2017-16264 was published Jan 12, 2023
Jettison parser crash by stackoverflow Moderate
CVE-2022-40149 was published for org.codehaus.jettison:jettison (Maven) Sep 17, 2022
coheigea
This vulnerability allows local attackers to escalate privileges on affected installations of... Moderate Unreviewed
CVE-2022-35867 was published Aug 4, 2022
Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017... Moderate Unreviewed
CVE-2021-39845 was published May 24, 2022
A vulnerability was found in the Linux kernel's nft_set_desc_concat_parse() function .This flaw... Moderate Unreviewed
CVE-2022-2078 was published Jul 1, 2022
A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main() function. This flaw allows... Moderate Unreviewed
CVE-2022-1355 was published Sep 1, 2022
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005... Moderate Unreviewed
CVE-2023-21610 was published Jan 18, 2023
zsh through version 5.4.2 is vulnerable to a stack-based buffer overflow in the exec.c:hashcmd()... Moderate Unreviewed
CVE-2018-1071 was published May 13, 2022
Qemu emulator <= 3.0.0 built with the NE2000 NIC emulation support is vulnerable to an integer... Moderate Unreviewed
CVE-2018-10839 was published May 13, 2022
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected... Moderate Unreviewed
CVE-2022-43625 was published Mar 29, 2023
Jettison parser crash by stackoverflow Moderate
GHSA-xqcq-j8w9-3pxv was published for com.tencyle.fixes:org.codehaus.jettison--jettison (Maven) Aug 1, 2023
Stack-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.3-DEV. Moderate Unreviewed
CVE-2023-4756 was published Sep 4, 2023
A vulnerability classified as critical was found in Tenda AC6 US_AC6V1.0BR_V15.03.05.19. Affected... Moderate Unreviewed
CVE-2023-2923 was published May 27, 2023
Stack-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.2.2. Moderate Unreviewed
CVE-2023-2837 was published May 22, 2023
A vulnerability, which was classified as critical, has been found in H3C R160 V1004004. Affected... Moderate Unreviewed
CVE-2023-2676 was published May 12, 2023
Elasticsearch vulnerable to stack overflow in the search API Moderate
CVE-2023-31419 was published for org.elasticsearch:elasticsearch (Maven) Oct 26, 2023
When handling contactless cards, usage of a specific function to get additional... Moderate Unreviewed
CVE-2023-33222 was published Dec 15, 2023
A vulnerability was found in Totolink N350RT 9.3.5u.6139_B20201216. It has been rated as critical... Moderate Unreviewed
CVE-2023-7187 was published Dec 31, 2023
Stack-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.3-DEV. Moderate Unreviewed
CVE-2024-0321 was published Jan 8, 2024
A vulnerability classified as critical was found in Totolink N350RT 9.3.5u.6139_B20201216.... Moderate Unreviewed
CVE-2023-7213 was published Jan 7, 2024
A vulnerability, which was classified as critical, has been found in Totolink N350RT 9.3.5u... Moderate Unreviewed
CVE-2023-7214 was published Jan 7, 2024
A vulnerability classified as critical was found in Tenda AC10U 15.03.06.49_multi_TDE01. Affected... Moderate Unreviewed
CVE-2024-0922 was published Jan 26, 2024
A vulnerability was found in Tenda AC10U 15.03.06.49_multi_TDE01 and classified as critical. This... Moderate Unreviewed
CVE-2024-0926 was published Jan 26, 2024
A vulnerability, which was classified as critical, was found in Tenda AC10U 15.03.06... Moderate Unreviewed
CVE-2024-0924 was published Jan 26, 2024
A vulnerability was found in Tenda AC10U 15.03.06.49_multi_TDE01. It has been classified as... Moderate Unreviewed
CVE-2024-0927 was published Jan 26, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database