GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+
207 advisories
Filter by severity
Multiple CODESYS Products are prone to a buffer over read. A low privileged remote attacker may...
Moderate
Unreviewed
CVE-2022-32141
was published
Jun 25, 2022
Buffer Over-read in GitHub repository gpac/gpac prior to 2.1.0-DEV.
High
Unreviewed
CVE-2022-3178
was published
Sep 13, 2022
Buffer Over-read in GitHub repository vim/vim prior to 8.2.
High
Unreviewed
CVE-2022-2175
was published
Jun 24, 2022
Buffer Over-read in GitHub repository gpac/gpac prior to 2.3-DEV.
Moderate
Unreviewed
CVE-2023-4758
was published
Sep 4, 2023
A buffer over-read was reported in the LemSecureBootForceKey module in some Lenovo Desktop...
Moderate
Unreviewed
CVE-2023-43568
was published
Nov 9, 2023
A buffer over-read was reported in the BiosExtensionLoader module in some Lenovo Desktop products...
Moderate
Unreviewed
CVE-2023-43572
was published
Nov 9, 2023
A buffer over-read was reported in the LEMALLDriversConnectedEventHook module in some Lenovo...
Moderate
Unreviewed
CVE-2023-43574
was published
Nov 9, 2023
Apache Tomcat Buffer Over-Read
High
CVE-2006-7197
was published
for
org.apache.tomcat:tomcat
(Maven)
May 1, 2022
A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote...
High
Unreviewed
CVE-2024-20290
was published
Feb 7, 2024
A denial of service vulnerability exists in the ICMP and ICMPv6 parsing functionality of Weston...
Moderate
Unreviewed
CVE-2023-39541
was published
Feb 20, 2024
A denial of service vulnerability exists in the ICMP and ICMPv6 parsing functionality of Weston...
Moderate
Unreviewed
CVE-2023-39540
was published
Feb 20, 2024
Wangle's LineBasedFrameDecoder contains logic for identifying newlines which incorrectly advances...
Critical
Unreviewed
CVE-2019-3563
was published
May 24, 2022
When processing certain files, PHP EXIF extension in versions 7.1.x below 7.1.29, 7.2.x below 7.2...
Critical
Unreviewed
CVE-2019-11036
was published
May 24, 2022
tcpdump.org tcpdump 4.9.2 is affected by: CWE-126: Buffer Over-read. The impact is: May expose...
Moderate
Unreviewed
CVE-2019-1010220
was published
May 24, 2022
On affected platforms running Arista CloudEOS an issue in the Software Forwarding Engine (Sfe)...
High
Unreviewed
CVE-2023-24513
was published
Apr 12, 2023
An access violation vulnerability exists in the eventcore functionality of Milesight UR32L v32.3...
High
Unreviewed
CVE-2023-23571
was published
Jul 6, 2023
iSCSI dissector crash in Wireshark 4.0.0 to 4.0.6 allows denial of service via packet injection...
Moderate
Unreviewed
CVE-2023-3649
was published
Jul 14, 2023
Windows Kernel Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-21340
was published
Feb 13, 2024
Windows Cloud Files Mini Filter Driver Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-26160
was published
Mar 12, 2024
Information disclosure in modem due to buffer over-read while processing response from DNS server
High
Unreviewed
CVE-2022-25728
was published
Feb 12, 2023
Information disclosure in modem due to buffer over read in dns client due to missing length check
High
Unreviewed
CVE-2022-25732
was published
Feb 12, 2023
Information disclosure in modem due to buffer over-red while performing checksum of packet received
High
Unreviewed
CVE-2022-25738
was published
Feb 12, 2023
Information disclosure in Trusted Execution Environment due to buffer over-read while processing...
Moderate
Unreviewed
CVE-2022-33221
was published
Feb 12, 2023
Information disclosure due to buffer over-read in Modem while using static array to process IPv4...
High
Unreviewed
CVE-2022-33229
was published
Feb 12, 2023
Information disclosure due to buffer over-read in WLAN while parsing NMF frame.
High
Unreviewed
CVE-2022-33271
was published
Feb 12, 2023
ProTip!
Advisories are also available from the
GraphQL API