GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,266
Erlang
31
GitHub Actions
21
Go
2,035
Maven
5,000+
npm
3,732
NuGet
662
pip
3,413
Pub
12
RubyGems
891
Rust
865
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
33 advisories
Filter by severity
Windows TCP/IP Remote Code Execution Vulnerability
Critical
Unreviewed
CVE-2024-38063
was published
Aug 13, 2024
Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability
Critical
Unreviewed
CVE-2024-38074
was published
Jul 9, 2024
An integer underflow vulnerability exists in the sopen_FAMOS_read functionality of The Biosig...
Critical
Unreviewed
CVE-2024-23313
was published
Feb 20, 2024
Integer underflow in WebUI in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to...
Critical
Unreviewed
CVE-2024-0808
was published
Jan 24, 2024
An integer underflow in Organization Specific TLV was found in various versions of OpenvSwitch.
Critical
Unreviewed
CVE-2022-4338
was published
Jan 11, 2023
ZAngband zangband-data 2.7.5 is affected by an integer underflow vulnerability in src/tk/plat.c...
Critical
Unreviewed
CVE-2021-40589
was published
Jun 9, 2022
A memory corruption vulnerability exists in the XML-parsing CreateLabelOrAttrib functionality of...
Critical
Unreviewed
CVE-2021-21811
was published
May 24, 2022
A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC)...
Critical
Unreviewed
CVE-2021-31889
was published
May 24, 2022
Integer underflow can occur when the RTCP length is lesser than than the actual blocks present in...
Critical
Unreviewed
CVE-2021-1919
was published
May 24, 2022
Integer underflow can occur due to improper handling of incoming RTCP packets in Snapdragon Auto,...
Critical
Unreviewed
CVE-2021-1920
was published
May 24, 2022
Possible out of bound memory access in audio due to integer underflow while processing modified...
Critical
Unreviewed
CVE-2020-3691
was published
May 24, 2022
An issue was discovered in The Sleuth Kit (TSK) 4.6.6. There is an off-by-one overwrite due to an...
Critical
Unreviewed
CVE-2019-14532
was published
May 24, 2022
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing...
Critical
Unreviewed
CVE-2019-14199
was published
May 24, 2022
Possible integer underflow can happen when calculating length of elementary stream info from...
Critical
Unreviewed
CVE-2019-2244
was published
May 24, 2022
Possible integer underflow can happen when calculating length of elementary stream map from...
Critical
Unreviewed
CVE-2019-2245
was published
May 24, 2022
Improper input validation on input data which is used to locate and copy the additional IEs in...
Critical
Unreviewed
CVE-2018-11930
was published
May 24, 2022
An issue was discovered in Suricata 4.1.x before 4.1.4. If the input of the function...
Critical
Unreviewed
CVE-2019-10053
was published
May 24, 2022
Integer underflow in Sandstorm Cap'n Proto before 0.4.1.1 and 0.5.x before 0.5.1.1 might allow...
Critical
Unreviewed
CVE-2015-2311
was published
May 17, 2022
Integer underflow in the _gdContributionsAlloc function in gd_interpolation.c in the GD Graphics...
Critical
Unreviewed
CVE-2016-10166
was published
May 17, 2022
An integer underflow has been identified in the unicode_to_utf8() function in tnef 1.4.14. This...
Critical
Unreviewed
CVE-2017-8911
was published
May 17, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile,...
Critical
Unreviewed
CVE-2015-9198
was published
May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile...
Critical
Unreviewed
CVE-2015-9167
was published
May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile,...
Critical
Unreviewed
CVE-2015-9129
was published
May 14, 2022
rdesktop versions up to and including v1.8.3 contain an Integer Underflow that leads to a Heap...
Critical
Unreviewed
CVE-2018-20179
was published
May 14, 2022
rdesktop versions up to and including v1.8.3 contain an Integer Underflow that leads to a Heap...
Critical
Unreviewed
CVE-2018-20180
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API