Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,350
Erlang
31
GitHub Actions
22
Go
2,119
Maven
5,000+
npm
3,778
NuGet
680
pip
3,459
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+

113 advisories

Loading
Bootloader contains a vulnerability in the NV3P server where any user with physical access... Low Unreviewed
CVE-2021-1111 was published May 24, 2022
linux-loader reading beyond EOF could lead to infinite loop Low
CVE-2022-23523 was published for linux-loader (Rust) Dec 12, 2022
likebreath
Dell Alienware m17 R5 BIOS version prior to 1.2.2 contain a buffer access vulnerability. A... Low Unreviewed
CVE-2022-34399 was published Jan 18, 2023
An issue was discovered in the Arm Mali Kernel Driver. A non-privileged user can make improper... Low Unreviewed
CVE-2022-46396 was published Apr 11, 2023
A vulnerability in SiLabs Z/IP Gateway 7.18.01 and earlier allows an authenticated attacker... Low Unreviewed
CVE-2023-0969 was published Jun 21, 2023
Improper buffer restrictions in some Intel(R) QAT Library software before version 22.07.1 may... Low Unreviewed
CVE-2023-22313 was published Nov 14, 2023
Arm provides multiple helpers to clean & invalidate the cache for a given region. This is, for... Low Unreviewed
CVE-2023-34321 was published Jan 5, 2024
Arm provides multiple helpers to clean & invalidate the cache for a given region. This is, for... Low Unreviewed
CVE-2023-46837 was published Jan 5, 2024
Vyper's external calls can overflow return data to return input buffer Low
CVE-2024-24560 was published for vyper (pip) Feb 2, 2024
zobront
Vyper's `_abi_decode` vulnerable to Memory Overflow Low
CVE-2024-26149 was published for vyper (pip) Feb 26, 2024
minaminao-osec
Duplicate Advisory: Nokogiri updates packaged libxml2 to v2.12.7 to resolve CVE-2024-34459 Low
GHSA-r3w4-36x6-7r99 was published for nokogiri (RubyGems) May 14, 2024 withdrawn
Improper buffer restrictions in Intel(R) Media SDK software all versions may allow an... Low Unreviewed
CVE-2023-47169 was published May 16, 2024
Dell Precision Rack, 14G Intel BIOS versions prior to 2.22.2, contains an Access of Memory... Low Unreviewed
CVE-2024-42425 was published Sep 10, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database