GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,266
Erlang
31
GitHub Actions
21
Go
2,035
Maven
5,000+
npm
3,732
NuGet
662
pip
3,413
Pub
12
RubyGems
891
Rust
865
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
55 advisories
Filter by severity
The affected product is vulnerable to an integer underflow. An unauthenticated attacker could...
Moderate
Unreviewed
CVE-2024-52558
was published
Dec 6, 2024
In the Linux kernel, the following vulnerability has been resolved:
media: ar0521: don't...
Moderate
Unreviewed
CVE-2024-53081
was published
Nov 19, 2024
In the Linux kernel, the following vulnerability has been resolved:
net: fix crash when config...
Moderate
Unreviewed
CVE-2024-50258
was published
Nov 9, 2024
A vulnerability in Internet Key Exchange version 2 (IKEv2) processing of Cisco Secure Client...
Moderate
Unreviewed
CVE-2024-20474
was published
Oct 23, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Ensure...
Moderate
Unreviewed
CVE-2024-46730
was published
Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved:
vt_ioctl: fix...
Moderate
Unreviewed
CVE-2022-48804
was published
Jul 16, 2024
Information disclosure while parsing sub-IE length during new IE generation.
Moderate
Unreviewed
CVE-2024-21466
was published
Jul 1, 2024
Sonos Era 100 SMB2 Message Handling Integer Underflow Information Disclosure Vulnerability. This...
Moderate
Unreviewed
CVE-2024-5256
was published
Jun 6, 2024
Windows DWM Core Library Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-30008
was published
May 14, 2024
Windows Hyper-V Denial of Service Vulnerability
Moderate
Unreviewed
CVE-2024-30011
was published
May 14, 2024
In the Linux kernel, the following vulnerability has been resolved:
tpm: efi: Use local variable...
Moderate
Unreviewed
CVE-2021-46951
was published
Feb 27, 2024
An integer overflow vulnerability exists in the NTRIP Stream Parsing functionality of GPSd 3.25.1...
Moderate
Unreviewed
CVE-2023-43628
was published
Dec 5, 2023
In keyinstall, there is a possible information disclosure due to an integer overflow. This could...
Moderate
Unreviewed
CVE-2023-20635
was published
Mar 7, 2023
In wlan driver, there is a possible missing params check. This could lead to local denial of...
Moderate
Unreviewed
CVE-2022-38681
was published
Feb 12, 2023
A use-after-free flaw was found in io_uring/filetable.c in io_install_fixed_file in the io_uring...
Moderate
Unreviewed
CVE-2023-0469
was published
Jan 26, 2023
In wlan driver, there is a possible missing bounds check. This could lead to local denial of...
Moderate
Unreviewed
CVE-2022-44444
was published
Jan 4, 2023
An integer underflow issue was found in the QEMU VNC server while processing ClientCutText...
Moderate
Unreviewed
CVE-2022-3165
was published
Oct 17, 2022
The Rating by BestWebSoft WordPress plugin through 1.5 does not validate the submitted rating,...
Moderate
Unreviewed
CVE-2021-25121
was published
Jun 21, 2022
An integer underflow in fuse_lib_readdir enables arbitrary memory read operations in NTFS-3G...
Moderate
Unreviewed
CVE-2022-30787
was published
May 27, 2022
Wazuh Manager in Wazuh through 4.1.5 is affected by a remote Integer Underflow vulnerability that...
Moderate
Unreviewed
CVE-2021-41821
was published
May 24, 2022
An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR...
Moderate
Unreviewed
CVE-2021-26260
was published
May 24, 2022
An integer overflow leading to a heap-buffer overflow was found in OpenEXR in versions before 3.0...
Moderate
Unreviewed
CVE-2021-26945
was published
May 24, 2022
Microsoft Office Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2021-31178
was published
May 24, 2022
An integer underflow in dpdk versions before 18.11.10 and before 19.11.5 in the `move_desc`...
Moderate
Unreviewed
CVE-2020-14378
was published
May 24, 2022
A flaw was found in xorg-x11-server before 1.20.9. An integer underflow in the X input extension...
Moderate
Unreviewed
CVE-2020-14346
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API