GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,536
Composer 4,189
Erlang 31
GitHub Actions 19
Go 1,985
Maven 5,160
npm 3,701
NuGet 657
pip 3,326
Pub 11
RubyGems 882
Rust 836
Swift 35

Unreviewed advisories

All unreviewed 233,536

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,809 advisories

Filter by severity

Sort by

Least recently updated

A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability... Moderate Unreviewed

CVE-2022-24322 was published Mar 11, 2022

An issue was discovered in Softing OPC UA C++ SDK before 5.70. An invalid XML element in the type... Moderate Unreviewed

CVE-2021-42262 was published Mar 13, 2022

Multiple buffer overflows in unspecified COM objects in Rational Common Licensing 7.0 through 7.1... Moderate Unreviewed

CVE-2011-1205 was published May 17, 2022

The SPICE Firefox plug-in (spice-xpi) 2.4, 2.3, 2.2, and possibly other versions allows remote... Moderate Unreviewed

CVE-2011-1179 was published May 17, 2022

Heap-based buffer overflow in Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha allows remote... Moderate Unreviewed

CVE-2011-0427 was published May 17, 2022

A certain Fedora patch for gif2png.c in gif2png 2.5.1 and 2.5.2, as distributed in gif2png-2.5.1... Moderate Unreviewed

CVE-2010-4695 was published May 17, 2022

Multiple stack-based buffer overflows in unspecified CGI programs in the Unified Maintenance Tool... Moderate Unreviewed

CVE-2011-0344 was published May 17, 2022

Heap-based buffer overflow in IBM WebSphere MQ 6.0 before 6.0.2.11 and 7.0 before 7.0.1.5 allows... Moderate Unreviewed

CVE-2011-0314 was published May 17, 2022

Buffer overflow in IBM WebSphere MQ 7.0 before 7.0.1.4 allows remote attackers to execute... Moderate Unreviewed

CVE-2011-0310 was published May 17, 2022

Buffer overflow in gif2png.c in gif2png 2.5.3 and earlier might allow context-dependent attackers... Moderate Unreviewed

CVE-2010-4694 was published May 17, 2022

IBM Tivoli Directory Server (TDS) 6.0.0.x before 6.0.0.8-TIV-ITDS-IF0007 does not properly handle... Moderate Unreviewed

CVE-2010-4216 was published May 17, 2022

CoreText in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute... Moderate Unreviewed

CVE-2015-5761 was published May 17, 2022

Heap-based buffer overflow in the GSM mobility management implementation in Telephony in Apple... Moderate Unreviewed

CVE-2010-3832 was published May 17, 2022

Heap-based buffer overflow in the convert_to_idna function in WWW/Library/Implementation/HTParse... Moderate Unreviewed

CVE-2010-2810 was published May 17, 2022

CoreMedia Playback in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to... Moderate Unreviewed

CVE-2015-5778 was published May 17, 2022

WebKit, as used in Apple iOS before 9.1, Safari before 9.0.1, and iTunes before 12.3.1, allows... Moderate Unreviewed

CVE-2015-5930 was published May 17, 2022

FontParser in Apple iOS before 9.1, OS X before 10.11.1, and watchOS before 2.0.1 allows remote... Moderate Unreviewed

CVE-2015-5942 was published May 17, 2022

The Accelerate Framework component in Apple iOS before 9.1 and OS X before 10.11.1, when multi... Moderate Unreviewed

CVE-2015-5940 was published May 17, 2022

FontParser in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute... Moderate Unreviewed

CVE-2015-5756 was published May 17, 2022

CoreMedia Playback in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to... Moderate Unreviewed

CVE-2015-5777 was published May 17, 2022

ImageIO in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute... Moderate Unreviewed

CVE-2015-5758 was published May 17, 2022

Apple QuickTime before 7.7.8 allows remote attackers to execute arbitrary code or cause a denial... Moderate Unreviewed

CVE-2015-5786 was published May 17, 2022

WebKit, as used in Apple iOS before 9.1, Safari before 9.0.1, and iTunes before 12.3.1, allows... Moderate Unreviewed

CVE-2015-5928 was published May 17, 2022

The OpenGL implementation in Apple iOS before 9.1 and OS X before 10.11.1 allows remote attackers... Moderate Unreviewed

CVE-2015-5924 was published May 17, 2022

Stack-based buffer overflow in the HTTP proxy service in Alcatel-Lucent OmniVista 4760 server... Moderate Unreviewed

CVE-2010-3281 was published May 17, 2022

Previous 1 2 3 4 5 … 112 113 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,809 advisories