Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,318
Erlang
31
GitHub Actions
21
Go
2,074
Maven
5,000+
npm
3,746
NuGet
674
pip
3,434
Pub
12
RubyGems
892
Rust
880
Swift
37
Unreviewed advisories
All unreviewed
5,000+

641 advisories

Loading
robdns commit d76d2e6 was discovered to contain a heap overflow via the component block->filename... Critical Unreviewed
CVE-2024-24192 was published Jun 7, 2024
Memory corruption in TZ Secure OS while Tunnel Invoke Manager initialization. Critical Unreviewed
CVE-2023-43538 was published Jun 3, 2024
Memory corruption in Hypervisor when platform information mentioned is not aligned. Critical Unreviewed
CVE-2023-43556 was published Jun 3, 2024
In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Don't let... Critical Unreviewed
CVE-2023-52735 was published May 21, 2024
Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.stb.mode parameter in the function... Critical Unreviewed
CVE-2024-35571 was published May 20, 2024
Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow... Critical Unreviewed
CVE-2024-34945 was published May 14, 2024
TOTOLINK LR350 V9.3.5u.6698_B20230810 was discovered to contain a stack overflow via the password... Critical Unreviewed
CVE-2024-35099 was published May 14, 2024
HDF5 Library through 1.14.3 has a heap buffer overflow in H5O__mtime_new_encode in H5Omtime.c. Critical Unreviewed
CVE-2024-33874 was published May 14, 2024
An issue was discovered on certain Nuki Home Solutions devices. The code used to parse the JSON... Critical Unreviewed
CVE-2022-32504 was published May 14, 2024
HDF5 through 1.14.3 contains a buffer overflow in H5Z__filter_scaleoffset, resulting in the... Critical Unreviewed
CVE-2024-29159 was published May 14, 2024
wasm3 v0.5.0 was discovered to contain a global buffer overflow which leads to segmentation fault... Critical Unreviewed
CVE-2024-34252 was published May 6, 2024
A buffer overflow vulnerability exists in all versions of sngrep since v0.4.2, due to improper... Critical Unreviewed
CVE-2024-3119 was published Apr 10, 2024
A stack-buffer overflow vulnerability exists in all versions of sngrep since v1.4.1. The flaw is... Critical Unreviewed
CVE-2024-3120 was published Apr 10, 2024
transpose: Buffer overflow due to integer overflow Critical
GHSA-5gmm-6m36-r7jh was published for transpose (Rust) Apr 5, 2024
Tenda AX1803 v1.0.0.1 contains a stack overflow via the serviceName parameter in the function... Critical Unreviewed
CVE-2024-30620 was published Apr 2, 2024
Tenda F1202 v1.2.0.20(408) has a stack overflow vulnerability located in the funcpara1 parameter... Critical Unreviewed
CVE-2024-30635 was published Mar 29, 2024
Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the schedStartTime parameter of the... Critical Unreviewed
CVE-2024-30602 was published Mar 28, 2024
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the security parameter of the... Critical Unreviewed
CVE-2024-30584 was published Mar 28, 2024
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability located in the deviceName... Critical Unreviewed
CVE-2024-30593 was published Mar 28, 2024
S-Lang 2.3.2 was discovered to contain a segmentation fault via the function fixup_tgetstr(). Critical Unreviewed
CVE-2023-45929 was published Mar 27, 2024
StringIO buffer overread vulnerability Critical
CVE-2024-27280 was published for stringio (RubyGems) Mar 25, 2024
Shenzhen Libituo Technology Co., Ltd LBT-T300-mini v1.2.9 was discovered to contain a buffer... Critical Unreviewed
CVE-2024-29243 was published Mar 21, 2024
Buffer Overflow vulnerability in TOTOLink X5000R V9.1.0u.6118-B20201102 and A7000R V9.1.0u.6115... Critical Unreviewed
CVE-2024-28639 was published Mar 16, 2024
In TP-Link Omada er605 1.0.1 through (v2.6) 2.2.3, a cloud-brd binary is susceptible to an... Critical Unreviewed
CVE-2024-25139 was published Mar 14, 2024
A vulnerability has been identified in Cerberus PRO EN Engineering Tool (All versions < IP8),... Critical Unreviewed
CVE-2024-22039 was published Mar 12, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database