GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,096
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,654
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
55 advisories
Filter by severity
While processing a debug log event from firmware in all Android releases from CAF using the Linux...
Moderate
Unreviewed
CVE-2018-5865
was published
May 14, 2022
Multiple Integer underflows in the geonet_print function in tcpdump 4.5.0 through 4.6.2, when in...
Moderate
Unreviewed
CVE-2014-8768
was published
May 14, 2022
The edge_bulk_in_callback function in drivers/usb/serial/io_ti.c in the Linux kernel before 4.10...
Moderate
Unreviewed
CVE-2017-8924
was published
May 14, 2022
Crash in `max_pool3d` when size argument is 0 or negative
Moderate
CVE-2021-41196
was published
for
tensorflow
(pip)
Nov 10, 2021
An integer underflow vulnerability exists in pixel-a.asm, the x86 assembly code for...
Moderate
Unreviewed
CVE-2017-8906
was published
May 13, 2022
Integer underflow in the asfrtp_parse_packet function in libavformat/rtpdec_asf.c in FFmpeg...
Moderate
Unreviewed
CVE-2011-4031
was published
May 13, 2022
Integer underflow in glyph handling in FreeType before 2.4.0 allows remote attackers to cause a...
Moderate
Unreviewed
CVE-2010-2497
was published
May 13, 2022
When processing subtitles format media file, KMPlayer version 2018.12.24.14 or lower doesn't...
Moderate
Unreviewed
CVE-2019-9133
was published
May 13, 2022
Integer underflow in LibreOffice before 4.4.5 and Apache OpenOffice before 4.1.2, when the...
Moderate
Unreviewed
CVE-2015-5212
was published
May 13, 2022
An exploitable integer underflow vulnerability exists in the ZigBee firmware update routine of...
Moderate
Unreviewed
CVE-2018-3926
was published
May 13, 2022
An integer underflow issue was found in the QEMU VNC server while processing ClientCutText...
Moderate
Unreviewed
CVE-2022-3165
was published
Oct 17, 2022
An integer overflow leading to a heap-buffer overflow was found in OpenEXR in versions before 3.0...
Moderate
Unreviewed
CVE-2021-26945
was published
May 24, 2022
Wazuh Manager in Wazuh through 4.1.5 is affected by a remote Integer Underflow vulnerability that...
Moderate
Unreviewed
CVE-2021-41821
was published
May 24, 2022
An exploitable denial of service vulnerability exists in the freeDiameter functionality of...
Moderate
Unreviewed
CVE-2020-6098
was published
May 24, 2022
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core)....
Moderate
Unreviewed
CVE-2020-14699
was published
May 24, 2022
An exploitable denial-of-service vulnerability exists in ServiceAgent functionality of the Moxa...
Moderate
Unreviewed
CVE-2019-5148
was published
May 24, 2022
A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to...
Moderate
Unreviewed
CVE-2020-14362
was published
May 24, 2022
A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to...
Moderate
Unreviewed
CVE-2020-14361
was published
May 24, 2022
Buffer overflow can occur while processing non-standard NAN message from user space. in...
Moderate
Unreviewed
CVE-2019-2297
was published
May 24, 2022
A flaw was found in xorg-x11-server before 1.20.9. An integer underflow in the X input extension...
Moderate
Unreviewed
CVE-2020-14346
was published
May 24, 2022
An integer underflow in dpdk versions before 18.11.10 and before 19.11.5 in the `move_desc`...
Moderate
Unreviewed
CVE-2020-14378
was published
May 24, 2022
A vulnerability in the web server of Cisco Integrated Management Controller (IMC) could allow an...
Moderate
Unreviewed
CVE-2019-1628
was published
May 24, 2022
The Rating by BestWebSoft WordPress plugin through 1.5 does not validate the submitted rating,...
Moderate
Unreviewed
CVE-2021-25121
was published
Jun 21, 2022
An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR...
Moderate
Unreviewed
CVE-2021-26260
was published
May 24, 2022
An integer underflow in fuse_lib_readdir enables arbitrary memory read operations in NTFS-3G...
Moderate
Unreviewed
CVE-2022-30787
was published
May 27, 2022
ProTip!
Advisories are also available from the
GraphQL API