Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,097
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,657
NuGet
638
pip
3,264
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

391 advisories

Loading
Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in... Moderate Unreviewed
CVE-2022-49040 was published Sep 26, 2024
Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in backup... Moderate Unreviewed
CVE-2022-49041 was published Sep 26, 2024
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in HYPR... Moderate Unreviewed
CVE-2023-6334 was published Jan 16, 2024
Multiple buffer overflow vulnerabilities in SiLabs Z/IP Gateway SDK version 7.18.01 and earlier... Moderate Unreviewed
CVE-2023-0970 was published Jun 21, 2023
Sony XAV-AX5500 CarPlay TLV Stack-based Buffer Overflow Remote Code Execution Vulnerability. This... Moderate Unreviewed
CVE-2024-23933 was published Sep 23, 2024
Sony XAV-AX5500 USB Configuration Descriptor Buffer Overflow Remote Code Execution Vulnerability.... Moderate Unreviewed
CVE-2024-23972 was published Sep 23, 2024
Improper Input Validation vulnerability in Hitachi Energy MicroSCADA X SYS600 while reading a... Moderate Unreviewed
CVE-2022-1778 was published Sep 15, 2022
A vulnerability has been found in SourceCodester Telecom Billing Management System 1.0 and... Moderate Unreviewed
CVE-2024-9088 was published Sep 23, 2024
A buffer copy without checking size of input vulnerability has been reported to affect several... Moderate Unreviewed
CVE-2024-32763 was published Sep 6, 2024
Buffer Copy without Checking Size of Input (CWE-120) in the Controller 6000 and Controller 7000... Moderate Unreviewed
CVE-2024-24972 was published Sep 11, 2024
A buffer copy without checking size of input vulnerability has been reported to affect several... Moderate Unreviewed
CVE-2023-51367 was published Sep 6, 2024
jbig2enc v0.28 was discovered to contain a SEGV via jbig2_add_page in src/jbig2enc.cc:512. Moderate Unreviewed
CVE-2023-46363 was published Nov 8, 2023
A buffer overflow vulnerability in /bin/boa on D-Link DIR-619L Rev.B 2.06B1 via... Moderate Unreviewed
CVE-2024-33773 was published May 14, 2024
A buffer overflow vulnerability in the CGI program of Zyxel ATP series firmware versions from V4... Moderate Unreviewed
CVE-2024-6343 was published Sep 3, 2024
The MPD package included in TwinCAT/BSD allows an authenticated, low-privileged local attacker to... Moderate Unreviewed
CVE-2024-41176 was published Aug 27, 2024
A buffer overflow vulnerability in /bin/boa on D-Link DIR-619L Rev.B 2.06B1 via goform/formWPS,... Moderate Unreviewed
CVE-2024-33771 was published May 14, 2024
In the Linux kernel, the following vulnerability has been resolved: firmware: cs_dsp: Prevent... Moderate Unreviewed
CVE-2024-41038 was published Jul 29, 2024
In the Linux kernel, the following vulnerability has been resolved: firmware: cs_dsp: Return... Moderate Unreviewed
CVE-2024-42238 was published Aug 7, 2024
A vulnerability has been identified in SIMATIC PCS 7 V9.1 (All versions < V9.1 SP2 UC04), SIMATIC... Moderate Unreviewed
CVE-2023-50821 was published Apr 9, 2024
TOTOLINK A3700R V9.1.2u.6165_20211012 was discovered to contain a stack overflow via the password... Moderate Unreviewed
CVE-2024-37632 was published Jun 13, 2024
A vulnerability was found in TOTOLINK CA300-PoE 6.2c.884. It has been declared as critical. This... Moderate Unreviewed
CVE-2024-7217 was published Jul 30, 2024
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker... Moderate Unreviewed
CVE-2024-28576 was published Mar 20, 2024
Artifex Ghostscript before 10.03.0 has a stack-based buffer overflow in the pdfi_apply_filter()... Moderate Unreviewed
CVE-2024-29506 was published Jul 3, 2024
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker... Moderate Unreviewed
CVE-2024-28570 was published Mar 20, 2024
An issue was discovered on Renesas SmartBond DA14691, DA14695, DA14697, and DA14699 devices. The... Moderate Unreviewed
CVE-2024-25076 was published Jul 10, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database