Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,218
Erlang
31
GitHub Actions
19
Go
1,988
Maven
5,000+
npm
3,704
NuGet
661
pip
3,332
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

97 advisories

Loading
A heap-based buffer overflow was found in the SDHCI device emulation of QEMU. The bug is... Moderate Unreviewed
CVE-2024-3447 was published Nov 14, 2024
A heap-based buffer overflow in Fortinet FortiAnalyzer version 7.4.0 through 7.4.2, 7.2.0 through... Moderate Unreviewed
CVE-2024-33505 was published Nov 12, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2024-43587 was published Oct 18, 2024
Windows Mobile Broadband Driver Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2024-43526 was published Oct 8, 2024
Windows Mobile Broadband Driver Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2024-43525 was published Oct 8, 2024
Windows Mobile Broadband Driver Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2024-43523 was published Oct 8, 2024
Azure Service Fabric for Linux Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2024-43480 was published Oct 8, 2024
Bandisoft BandiView 7.05 is vulnerable to Buffer Overflow via sub_0x410d1d. The vulnerability... Moderate Unreviewed
CVE-2024-45872 was published Oct 3, 2024
A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G,... Moderate Unreviewed
CVE-2024-20516 was published Oct 2, 2024
A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G,... Moderate Unreviewed
CVE-2024-20517 was published Oct 2, 2024
A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G,... Moderate Unreviewed
CVE-2024-20522 was published Oct 2, 2024
Giflib Project v5.2.2 is vulnerable to a heap buffer overflow via gif2rgb. Moderate Unreviewed
CVE-2024-45993 was published Sep 30, 2024
Assimp v5.4.3 is vulnerable to Buffer Overflow via the MD5Importer::LoadMD5MeshFile function. Moderate Unreviewed
CVE-2024-46632 was published Sep 26, 2024
A vulnerability in Cisco Unified Threat Defense (UTD) Snort Intrusion Prevention System (IPS)... Moderate Unreviewed
CVE-2024-20508 was published Sep 25, 2024
There is a buffer overflow vulnerability in ZTE MF296R. Due to insufficient validation of the SMS... Moderate Unreviewed
CVE-2022-39068 was published Sep 18, 2024
Heap-based Buffer Overflow vulnerability in Samsung Open Source Escargot JavaScript engine allows... Moderate Unreviewed
CVE-2024-40754 was published Sep 10, 2024
Buffer overflow in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow... Moderate Unreviewed
CVE-2024-42438 was published Aug 14, 2024
Buffer overflow in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow... Moderate Unreviewed
CVE-2024-42436 was published Aug 14, 2024
Buffer overflow in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow... Moderate Unreviewed
CVE-2024-42437 was published Aug 14, 2024
Windows Mobile Broadband Driver Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2024-38161 was published Aug 13, 2024
A heap-buffer-overflow flaw was found in the cfg_mark_ports function within Unbound's config_file... Moderate Unreviewed
CVE-2024-43168 was published Aug 12, 2024
A vulnerability, which was classified as critical, was found in FFmpeg up to 5.1.5. This affects... Moderate Unreviewed
CVE-2024-7272 was published Aug 12, 2024
A vulnerability was found in FFmpeg up to 7.0.1. It has been classified as critical. This affects... Moderate Unreviewed
CVE-2024-7055 was published Aug 6, 2024
A heap buffer overflow in the function png_quantize() of hicolor v0.5.0 allows attackers to cause... Moderate Unreviewed
CVE-2024-41440 was published Jul 30, 2024
A heap buffer overflow in the function cp_stored() (/vendor/cute_png.h) of hicolor v0.5.0 allows... Moderate Unreviewed
CVE-2024-41438 was published Jul 30, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database