Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+

296 advisories

Loading
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile,... Critical Unreviewed
CVE-2015-9201 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 400... Critical Unreviewed
CVE-2015-9219 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 210... Critical Unreviewed
CVE-2016-10475 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 617... Critical Unreviewed
CVE-2016-10478 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and... Critical Unreviewed
CVE-2016-10491 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Small Cell SoC,... Critical Unreviewed
CVE-2016-10412 was published May 14, 2022
In wma_peer_info_event_handler() in Android for MSM, Firefox OS for MSM, and QRD Android before... Critical Unreviewed
CVE-2017-17766 was published May 14, 2022
A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.2... Critical Unreviewed
CVE-2017-5804 was published May 14, 2022
Multiple integer overflows in CCN-lite before 2.00 allow context-dependent attackers to have... Critical Unreviewed
CVE-2017-12465 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and... Critical Unreviewed
CVE-2015-9190 was published May 14, 2022
Memory corruption in WLAN due to integer overflow to buffer overflow while parsing GTK frames. in... Critical Unreviewed
CVE-2022-25748 was published Oct 19, 2022
Multiple integer overflows in libgfortran might allow remote attackers to execute arbitrary code... Critical Unreviewed
CVE-2014-5044 was published May 14, 2022
Integer overflow in the ndn_parse_sequence function in CCN-lite before 2.00 allows context... Critical Unreviewed
CVE-2017-12470 was published May 14, 2022
The ZeroMQ parser in tcpdump before 4.9.0 has an integer overflow in print-zeromq.c... Critical Unreviewed
CVE-2016-7938 was published May 14, 2022
The UNIX IPC layer in WebKit, including WebKitGTK+ prior to 2.16.3, does not properly validate... Critical Unreviewed
CVE-2017-1000121 was published May 17, 2022
tools/tiffcrop.c in libtiff 4.0.6 reads an undefined buffer in readContigStripsIntoBuffer()... Critical Unreviewed
CVE-2016-9538 was published May 17, 2022
A write-what-where condition in hermes caused by an integer overflow, prior to commit... Critical Unreviewed
CVE-2022-35289 was published Oct 11, 2022
Because of an integer overflow in sam2p 0.49.3, a loop executes 0xffffffff times, ending with an... Critical Unreviewed
CVE-2017-14636 was published May 17, 2022
In sam2p 0.49.3, an integer overflow exists in the pcxLoadImage24 function of the file in_pcx.cpp... Critical Unreviewed
CVE-2017-14630 was published May 17, 2022
When parsing a file that is submitted to the DPDecoder service as a job, the service will use the... Critical Unreviewed
CVE-2021-40417 was published Dec 23, 2021
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This... Critical Unreviewed
CVE-2021-45608 was published Dec 27, 2021
There is an Integer overflow vulnerability with ACPU in smartphones. Successful exploitation of... Critical Unreviewed
CVE-2021-39993 was published Jan 11, 2022
An issue was discovered in lib_mem.c in Micrium uC/OS uC/LIB 1.38.x and 1.39.00. The following... Critical Unreviewed
CVE-2021-26706 was published Jan 25, 2022
A CWE-190: Integer Overflow or Wraparound vulnerability exists that could cause heap-based buffer... Critical Unreviewed
CVE-2022-24310 was published Feb 11, 2022
Overflow in libsecp256k1 Critical
CVE-2021-38195 was published for libsecp256k1 (Rust) Aug 25, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database