Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,300
Erlang
31
GitHub Actions
21
Go
2,069
Maven
5,000+
npm
3,744
NuGet
668
pip
3,429
Pub
12
RubyGems
892
Rust
877
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

104 advisories

Loading
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1969. Moderate Unreviewed
CVE-2023-5344 was published Oct 2, 2023
Dell PowerEdge BIOS and Dell Precision BIOS contain a buffer overflow vulnerability. A local... Moderate Unreviewed
CVE-2023-32461 was published Sep 15, 2023
Heap-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.3-DEV. Moderate Unreviewed
CVE-2023-4682 was published Aug 31, 2023
A flaw was found in the QEMU virtual crypto device while handling data encryption/decryption... Moderate Unreviewed
CVE-2023-3180 was published Aug 3, 2023
A heap-based buffer overflow issue was discovered in ImageMagick's ReadTIM2ImageData() function... Moderate Unreviewed
CVE-2023-34474 was published Jun 16, 2023
Heap-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.2.2. Moderate Unreviewed
CVE-2023-3291 was published Jun 16, 2023
Microsoft SharePoint Denial of Service Vulnerability Moderate Unreviewed
CVE-2023-33129 was published Jun 14, 2023
Due to failure in validating the length provided by an attacker-crafted RTPS packet, Wireshark... Moderate Unreviewed
CVE-2023-0666 was published Jun 7, 2023
Due to failure in validating the length provided by an attacker-crafted MSMMS packet, Wireshark... Moderate Unreviewed
CVE-2023-0667 was published Jun 7, 2023
A heap-based buffer overflow vulnerability was found in the ImageMagick package that can lead to... Moderate Unreviewed
CVE-2023-2157 was published Jun 6, 2023
A heap-based buffer overflow issue was discovered in libjpeg-turbo in... Moderate Unreviewed
CVE-2023-2804 was published May 26, 2023
Heap-based overflow in Intel(R) SoC Watch based software before version 2021.1 may allow a... Moderate Unreviewed
CVE-2023-30763 was published May 12, 2023
A vulnerability, which was classified as critical, was found in PoDoFo 0.10.0. Affected is the... Moderate Unreviewed
CVE-2023-2241 was published Apr 22, 2023
A heap-based buffer overflow issue was discovered in ImageMagick's ImportMultiSpectralQuantum()... Moderate Unreviewed
CVE-2023-1906 was published Apr 13, 2023
A vulnerability in the IPv6 DHCP (DHCPv6) client module of Cisco Adaptive Security Appliance (ASA... Moderate Unreviewed
CVE-2023-20081 was published Mar 23, 2023
A vulnerability, which was classified as problematic, has been found in syoyo tinydng. Affected... Moderate Unreviewed
CVE-2023-1570 was published Mar 22, 2023
A vulnerability classified as critical was found in vox2png 1.0. Affected by this vulnerability... Moderate Unreviewed
CVE-2023-1010 was published Feb 24, 2023
A heap-based buffer overflow flaw was found in the Fribidi package and affects the... Moderate Unreviewed
CVE-2022-25309 was published Sep 7, 2022
User controlled parameters related to SMTP notifications are not correctly validated. This can... Moderate Unreviewed
CVE-2021-31986 was published May 24, 2022
XMP Toolkit SDK version 2020.1 (and earlier) is affected by a buffer overflow vulnerability... Moderate Unreviewed
CVE-2021-36056 was published May 24, 2022
A heap based buffer overflow in coders/tiff.c may result in program crash and denial of service... Moderate Unreviewed
CVE-2020-27829 was published May 24, 2022
There's a flaw in src/lib/openjp2/pi.c of openjpeg in versions prior to 2.4.0. If an attacker is... Moderate Unreviewed
CVE-2020-27845 was published May 24, 2022
There's a flaw in openjpeg in versions prior to 2.4.0 in src/lib/openjp2/pi.c. When an attacker... Moderate Unreviewed
CVE-2020-27841 was published May 24, 2022
A vulnerability has been identified in SIMATIC PCS 7 (All versions), SIMATIC PDM (All versions),... Moderate Unreviewed
CVE-2020-7586 was published May 24, 2022
** DISPUTED ** plugins/demux/libmkv_plugin.dll in VideoLAN VLC Media Player 2.0.7, and possibly... Moderate Unreviewed
CVE-2013-3245 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database