GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
112 advisories
Filter by severity
Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.9.0.
Moderate
Unreviewed
CVE-2023-5686
was published
Oct 20, 2023
A vulnerability was found in libtiff due to multiple potential integer overflows in raw2tiff.c....
Moderate
Unreviewed
CVE-2023-41175
was published
Oct 5, 2023
A heap-based buffer overflow vulnerability was found in coders/tiff.c in ImageMagick. This issue...
Moderate
Unreviewed
CVE-2023-3428
was published
Oct 4, 2023
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1969.
Moderate
Unreviewed
CVE-2023-5344
was published
Oct 2, 2023
Dell PowerEdge BIOS and Dell Precision BIOS contain a buffer overflow vulnerability. A local...
Moderate
Unreviewed
CVE-2023-32461
was published
Sep 15, 2023
Heap-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.3-DEV.
Moderate
Unreviewed
CVE-2023-4682
was published
Aug 31, 2023
A flaw was found in the QEMU virtual crypto device while handling data encryption/decryption...
Moderate
Unreviewed
CVE-2023-3180
was published
Aug 3, 2023
A heap-based buffer overflow issue was discovered in ImageMagick's ReadTIM2ImageData() function...
Moderate
Unreviewed
CVE-2023-34474
was published
Jun 16, 2023
Heap-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.2.2.
Moderate
Unreviewed
CVE-2023-3291
was published
Jun 16, 2023
Due to failure in validating the length provided by an attacker-crafted RTPS packet, Wireshark...
Moderate
Unreviewed
CVE-2023-0666
was published
Jun 7, 2023
Due to failure in validating the length provided by an attacker-crafted MSMMS packet, Wireshark...
Moderate
Unreviewed
CVE-2023-0667
was published
Jun 7, 2023
A heap-based buffer overflow vulnerability was found in the ImageMagick package that can lead to...
Moderate
Unreviewed
CVE-2023-2157
was published
Jun 6, 2023
A heap-based buffer overflow issue was discovered in libjpeg-turbo in...
Moderate
Unreviewed
CVE-2023-2804
was published
May 26, 2023
Heap-based overflow in Intel(R) SoC Watch based software before version 2021.1 may allow a...
Moderate
Unreviewed
CVE-2023-30763
was published
May 12, 2023
A vulnerability, which was classified as critical, was found in PoDoFo 0.10.0. Affected is the...
Moderate
Unreviewed
CVE-2023-2241
was published
Apr 22, 2023
A heap-based buffer overflow issue was discovered in ImageMagick's ImportMultiSpectralQuantum()...
Moderate
Unreviewed
CVE-2023-1906
was published
Apr 13, 2023
A vulnerability in the IPv6 DHCP (DHCPv6) client module of Cisco Adaptive Security Appliance (ASA...
Moderate
Unreviewed
CVE-2023-20081
was published
Mar 23, 2023
A vulnerability, which was classified as problematic, has been found in syoyo tinydng. Affected...
Moderate
Unreviewed
CVE-2023-1570
was published
Mar 22, 2023
A vulnerability classified as critical was found in vox2png 1.0. Affected by this vulnerability...
Moderate
Unreviewed
CVE-2023-1010
was published
Feb 24, 2023
A heap-based buffer overflow flaw was found in the Fribidi package and affects the...
Moderate
Unreviewed
CVE-2022-25309
was published
Sep 7, 2022
User controlled parameters related to SMTP notifications are not correctly validated. This can...
Moderate
Unreviewed
CVE-2021-31986
was published
May 24, 2022
XMP Toolkit SDK version 2020.1 (and earlier) is affected by a buffer overflow vulnerability...
Moderate
Unreviewed
CVE-2021-36056
was published
May 24, 2022
A heap based buffer overflow in coders/tiff.c may result in program crash and denial of service...
Moderate
Unreviewed
CVE-2020-27829
was published
May 24, 2022
There's a flaw in src/lib/openjp2/pi.c of openjpeg in versions prior to 2.4.0. If an attacker is...
Moderate
Unreviewed
CVE-2020-27845
was published
May 24, 2022
There's a flaw in openjpeg in versions prior to 2.4.0 in src/lib/openjp2/pi.c. When an attacker...
Moderate
Unreviewed
CVE-2020-27841
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API