GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,262
Erlang
31
GitHub Actions
21
Go
2,030
Maven
5,000+
npm
3,732
NuGet
662
pip
3,409
Pub
12
RubyGems
891
Rust
865
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
201 advisories
Filter by severity
zsh through version 5.4.2 is vulnerable to a stack-based buffer overflow in the exec.c:hashcmd()...
Moderate
Unreviewed
CVE-2018-1071
was published
May 13, 2022
Qemu emulator <= 3.0.0 built with the NE2000 NIC emulation support is vulnerable to an integer...
Moderate
Unreviewed
CVE-2018-10839
was published
May 13, 2022
NREL EnergyPlus, Versions 8.6.0 and possibly prior versions, The application fails to prevent an...
Moderate
Unreviewed
CVE-2019-10974
was published
May 24, 2022
The Telegram app 7.6.2 for iOS allows remote authenticated users to cause a denial of service ...
Moderate
Unreviewed
CVE-2021-30496
was published
May 24, 2022
Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017...
Moderate
Unreviewed
CVE-2021-39845
was published
May 24, 2022
A vulnerability was found in the Linux kernel's nft_set_desc_concat_parse() function .This flaw...
Moderate
Unreviewed
CVE-2022-2078
was published
Jul 1, 2022
This vulnerability allows local attackers to escalate privileges on affected installations of...
Moderate
Unreviewed
CVE-2022-35867
was published
Aug 4, 2022
A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main() function. This flaw allows...
Moderate
Unreviewed
CVE-2022-1355
was published
Sep 1, 2022
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the ...
Moderate
Unreviewed
CVE-2017-16264
was published
Jan 12, 2023
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005...
Moderate
Unreviewed
CVE-2023-21610
was published
Jan 18, 2023
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected...
Moderate
Unreviewed
CVE-2022-43625
was published
Mar 29, 2023
yasm 1.3.0.55.g101bc was discovered to contain a stack overflow via the function parse_expr5 at ...
Moderate
Unreviewed
CVE-2023-29583
was published
Apr 24, 2023
A vulnerability, which was classified as critical, has been found in H3C R160 V1004004. Affected...
Moderate
Unreviewed
CVE-2023-2676
was published
May 12, 2023
Stack-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.2.2.
Moderate
Unreviewed
CVE-2023-2837
was published
May 22, 2023
A vulnerability classified as critical was found in Tenda AC6 US_AC6V1.0BR_V15.03.05.19. Affected...
Moderate
Unreviewed
CVE-2023-2923
was published
May 27, 2023
A stack-based buffer overflow issue was found in ImageMagick's coders/tiff.c. This flaw allows an...
Moderate
Unreviewed
CVE-2023-3195
was published
Jun 16, 2023
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 with a Federated...
Moderate
Unreviewed
CVE-2023-35012
was published
Jul 17, 2023
A flaw was found in the exFAT driver of the Linux kernel. The vulnerability exists in the...
Moderate
Unreviewed
CVE-2023-4273
was published
Aug 9, 2023
A stack-based buffer overflow vulnerability [CWE-121] in Fortinet FortiOS before 7.0.3 allows a...
Moderate
Unreviewed
CVE-2023-29182
was published
Aug 17, 2023
Stack-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.3-DEV.
Moderate
Unreviewed
CVE-2023-4756
was published
Sep 4, 2023
A flaw was found in glibc. When the getaddrinfo function is called with the AF_UNSPEC address...
Moderate
Unreviewed
CVE-2023-4527
was published
Sep 18, 2023
A Stack-based Buffer Overflow vulnerability in the CLI command of Juniper Networks Junos OS...
Moderate
Unreviewed
CVE-2023-44176
was published
Oct 13, 2023
A Stack-based Buffer Overflow vulnerability in the CLI command of Juniper Networks Junos and...
Moderate
Unreviewed
CVE-2023-44177
was published
Oct 13, 2023
A Stack-based Buffer Overflow vulnerability in the CLI command of Juniper Networks Junos OS...
Moderate
Unreviewed
CVE-2023-44178
was published
Oct 13, 2023
NCC Group has found a flaw during the annual internal penetration test ordered by Axis...
Moderate
Unreviewed
CVE-2023-21414
was published
Oct 16, 2023
ProTip!
Advisories are also available from the
GraphQL API