GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
293 advisories
Filter by severity
Clara Genomics Analysis before 0.2.0 has an integer overflow for cudapoa memory management in...
Critical
Unreviewed
CVE-2019-15788
was published
May 24, 2022
An exploitable code execution vulnerability exists in the DICOM network response functionality of...
Critical
Unreviewed
CVE-2019-5093
was published
May 24, 2022
Integer overflow in the keycompare_mb function in sort.c in sort in GNU Coreutils through 8.23...
Critical
Unreviewed
CVE-2015-4042
was published
May 24, 2022
In nDPI through 3.2 Stable, the SSH protocol dissector has multiple KEXINIT integer overflows...
Critical
Unreviewed
CVE-2020-11939
was published
May 24, 2022
An integer overflow was discovered in the CoAP library in Arm Mbed OS 5.14.0. The function...
Critical
Unreviewed
CVE-2019-17211
was published
May 24, 2022
An integer overflow vulnerability in the calloc() function of the C runtime library of affected...
Critical
Unreviewed
CVE-2021-22156
was published
May 24, 2022
Certain Lexmark devices through 2023-02-19 have an Integer Overflow.
Critical
Unreviewed
CVE-2023-26065
was published
Apr 10, 2023
Integer overflow in Skia in Google Chrome prior to 112.0.5615.137 allowed a remote attacker who...
Critical
Unreviewed
CVE-2023-2136
was published
Apr 19, 2023
The `Toybox.Graphics.BufferedBitmap.initialize` API method in CIQ API version 2.3.0 through 4.1.7...
Critical
Unreviewed
CVE-2023-23298
was published
May 23, 2023
Widevine Trusted Application (TA) 5.0.0 through 5.1.1 has a drm_save_keys feature_name_len...
Critical
Unreviewed
CVE-2022-48331
was published
Jun 26, 2023
Widevine Trusted Application (TA) 5.0.0 through 5.1.1 has a drm_save_keys file_name_len integer...
Critical
Unreviewed
CVE-2022-48332
was published
Jun 26, 2023
Widevine Trusted Application (TA) 5.0.0 through 7.1.1 has a PRDiagVerifyProvisioning integer...
Critical
Unreviewed
CVE-2022-48335
was published
Jun 26, 2023
Widevine Trusted Application (TA) 5.0.0 through 5.1.1 has a drm_verify_keys prefix_len...
Critical
Unreviewed
CVE-2022-48333
was published
Jun 26, 2023
Widevine Trusted Application (TA) 5.0.0 through 7.1.1 has a PRDiagParseAndStoreData integer...
Critical
Unreviewed
CVE-2022-48336
was published
Jun 26, 2023
Widevine Trusted Application (TA) 5.0.0 through 5.1.1 has a drm_verify_keys total_len...
Critical
Unreviewed
CVE-2022-48334
was published
Jun 26, 2023
Libpeconv – integer overflow, before commit 75b1565 (30/11/2022).
Critical
Unreviewed
CVE-2023-23462
was published
Jul 6, 2023
An integer overflow was addressed with improved input validation. This issue is fixed in watchOS...
Critical
Unreviewed
CVE-2023-36495
was published
Jul 28, 2023
Integer Overflow vulnerability in RELIC before commit 34580d840469361ba9b5f001361cad659687b9ab,...
Critical
Unreviewed
CVE-2023-36326
was published
Sep 1, 2023
Integer Overflow vulnerability in RELIC before commit 421f2e91cf2ba42473d4d54daf24e295679e290e,...
Critical
Unreviewed
CVE-2023-36327
was published
Sep 1, 2023
In eatt_l2cap_reconfig_completed of eatt_impl.h, there is a possible out of bounds write due to...
Critical
Unreviewed
CVE-2023-35681
was published
Sep 11, 2023
Two heap-based buffer overflow vulnerabilities exist in the gwcfg_cgi_set_manage_post_data...
Critical
Unreviewed
CVE-2023-35967
was published
Oct 11, 2023
Two heap-based buffer overflow vulnerabilities exist in the gwcfg_cgi_set_manage_post_data...
Critical
Unreviewed
CVE-2023-35968
was published
Oct 11, 2023
Two heap-based buffer overflow vulnerabilities exist in the httpd manage_post functionality of...
Critical
Unreviewed
CVE-2023-35965
was published
Oct 11, 2023
Buffer-overflow in jsdtoa.c in Artifex MuJS in versions 1.0.1 to 1.1.1. An integer overflow...
Critical
Unreviewed
CVE-2021-33797
was published
Apr 18, 2023
transpose: Buffer overflow due to integer overflow
Critical
GHSA-5gmm-6m36-r7jh
was published
for
transpose
(Rust)
Apr 5, 2024
ProTip!
Advisories are also available from the
GraphQL API