GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,614
Composer 4,224
Erlang 31
GitHub Actions 19
Go 1,990
Maven 5,170
npm 3,706
NuGet 661
pip 3,336
Pub 11
RubyGems 884
Rust 845
Swift 36

Unreviewed advisories

All unreviewed 234,408

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,813 advisories

Filter by severity

Sort by

Least recently updated

Xmlsoft Libxml2 v2.11.0 was discovered to contain a global buffer overflow via the... Moderate Unreviewed

CVE-2023-39615 was published Aug 29, 2023

libvmod-digest before 1.0.3, as used in Varnish Enterprise 6.0.x before 6.0.11r5, has an out-of... Moderate Unreviewed

CVE-2023-41104 was published Aug 23, 2023

In multiple functions of mem_protect.c, there is a possible way to access hypervisor memory due... Moderate Unreviewed

CVE-2023-21264 was published Aug 14, 2023

Improper buffer restrictions in some Intel(R) NUC BIOS firmware may allow a privileged user to... Moderate Unreviewed

CVE-2022-36372 was published Aug 11, 2023

Improper buffer restrictions in the BIOS firmware for some Intel(R) Processors may allow a... Moderate Unreviewed

CVE-2022-27879 was published Aug 11, 2023

A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability... Moderate Unreviewed

CVE-2023-3953 was published Aug 9, 2023

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 with a Federated... Moderate Unreviewed

CVE-2023-35012 was published Jul 17, 2023

A memory corruption flaw was found in the Linux kernel’s human interface device (HID) subsystem... Moderate Unreviewed

CVE-2023-1073 was published Jul 6, 2023

In setProfileName of DevicePolicyManagerService.java, there is a possible way to crash the... Moderate Unreviewed

CVE-2023-21167 was published Jun 28, 2023

A potential vulnerability in the LenovoFlashDeviceInterface SMI handler may allow an attacker... Moderate Unreviewed

CVE-2023-2290 was published Jun 26, 2023

Multiple buffer overflow vulnerabilities in SiLabs Z/IP Gateway SDK version 7.18.01 and earlier... Moderate Unreviewed

CVE-2023-0970 was published Jun 21, 2023

Zoom for Windows clients prior to 5.14.0 contain an improper restriction of operations within the... Moderate Unreviewed

CVE-2023-28601 was published Jun 13, 2023

Transient DOS due to untrusted Pointer Dereference in core while sending USB QMI request. Moderate Unreviewed

CVE-2022-40533 was published Jun 6, 2023

A vulnerability classified as critical was found in Twister Antivirus 8. This vulnerability... Moderate Unreviewed

CVE-2023-2873 was published May 24, 2023

A vulnerability was found in the libtiff library. This flaw causes a heap buffer overflow issue... Moderate Unreviewed

CVE-2023-30774 was published May 19, 2023

A vulnerability was found in the libtiff library. This security flaw causes a heap buffer... Moderate Unreviewed

CVE-2023-30775 was published May 19, 2023

A potential heap based buffer overflow was found in _bfd_elf_slurp_version_tables() in bfd/elf.c.... Moderate Unreviewed

CVE-2023-1972 was published May 18, 2023

A flaw was found in LibRaw. A heap-buffer-overflow in raw2image_ex() caused by a maliciously... Moderate Unreviewed

CVE-2023-1729 was published May 16, 2023

An authenticated, remote attacker may use a Improper Restriction of Operations within the Bounds... Moderate Unreviewed

CVE-2022-47393 was published May 15, 2023

Improper buffer restrictions in some Intel(R) Server Board BMC firmware before version 2.90 may... Moderate Unreviewed

CVE-2023-25545 was published May 10, 2023

Improper buffer restriction in software for the Intel QAT Driver for Linux before version 1.7.l.4... Moderate Unreviewed

CVE-2022-41808 was published May 10, 2023

An issue found in Cesanta MJS v.1.26 allows a local attacker to cause a denial of service via the... Moderate Unreviewed

CVE-2023-30088 was published May 9, 2023

In spipe drive, there is a possible out of bounds write due to a missing bounds check. This could... Moderate Unreviewed

CVE-2022-47488 was published May 9, 2023

llvm-project commit fdbc55a5 was discovered to contain a segmentation fault via the component... Moderate Unreviewed

CVE-2023-29932 was published May 5, 2023

An issue was discovered in libbzip3.a in bzip3 before 1.2.3. There is a crash caused by an... Moderate Unreviewed

CVE-2023-29420 was published Apr 6, 2023

Previous 1 2 3 4 5 … 112 113 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,813 advisories