Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,411
Erlang
33
GitHub Actions
22
Go
2,146
Maven
5,000+
npm
3,808
NuGet
687
pip
3,481
Pub
12
RubyGems
897
Rust
899
Swift
38
Unreviewed advisories
All unreviewed
5,000+

248 advisories

Loading
mp4v2 v2.1.3 was discovered to contain a memory leak via MP4File::ReadString() at mp4file_io.cpp High Unreviewed
CVE-2023-33718 was published May 31, 2023
An out-of-bounds memory write flaw was found in the Linux kernel’s Kid-friendly Wired Controller... High Unreviewed
CVE-2022-3577 was published Jul 6, 2023
An incorrect TLB flush issue was found in the Linux kernel’s GPU i915 kernel driver, potentially... High Unreviewed
CVE-2022-4139 was published Jul 6, 2023
When UDP profile with idle timeout set to immediate or the value 0 is configured on a virtual... High Unreviewed
CVE-2023-29163 was published Jul 6, 2023
An issue in cimg.eu Cimg Library v2.9.3 allows an attacker to obtain sensitive information via a... High Unreviewed
CVE-2023-41484 was published Sep 20, 2023
When a client-side HTTP/2 profile and the HTTP MRF Router option are enabled for a virtual server... High Unreviewed
CVE-2023-40534 was published Oct 10, 2023
An Improper Input Validation vulnerability in the Packet Forwarding Engine of Juniper Networks... High Unreviewed
CVE-2023-44192 was published Oct 13, 2023
Baidu braft 1.1.2 has a memory leak related to use of the new operator in example/atomic... High Unreviewed
CVE-2023-30637 was published Apr 14, 2023
Memory Corruption in Graphics while accessing a buffer allocated through the graphics pool. High Unreviewed
CVE-2023-21666 was published May 2, 2023
Transient DOS while processing IE fragments from server during DTLS handshake. High Unreviewed
CVE-2023-33084 was published Mar 4, 2024
Transient DOS while processing multiple IKEV2 Informational Request to device from IPSEC server... High Unreviewed
CVE-2023-33086 was published Mar 4, 2024
A vulnerability has been identified in Nucleus NET (All versions), Nucleus ReadyStart V3 (All... High Unreviewed
CVE-2022-38371 was published Oct 11, 2022
MsQuic Remote Denial of Service Vulnerability High
CVE-2023-36435 was published for Microsoft.Native.Quic.MsQuic.OpenSSL (NuGet) Oct 10, 2023
A vulnerability has been identified in SIMATIC CP 1242-7 V2 (incl. SIPLUS variants) (All versions... High Unreviewed
CVE-2023-38380 was published Dec 12, 2023
An issue was discovered in the Connected Vehicle Systems Alliance (COVESA; formerly GENIVI) dlt... High Unreviewed
CVE-2023-26257 was published Feb 27, 2023
DCMTK through 3.6.6 does not handle memory free properly. The program malloc a heap memory for... High Unreviewed
CVE-2021-41687 was published Jun 29, 2022
DCMTK through 3.6.6 does not handle memory free properly. The malloced memory for storing all... High Unreviewed
CVE-2021-41690 was published Jun 29, 2022
DCMTK v3.6.7 was discovered to contain a memory leak via the T_ASC_Association object. High Unreviewed
CVE-2022-43272 was published Dec 2, 2022
An issue was discovered in the captive portal in OpenNDS before version 10.1.3. It has multiple... High Unreviewed
CVE-2023-41102 was published Nov 17, 2023
A vulnerability in the Internet Key Exchange Version 2 (IKEv2) module of Cisco IOS Software and... High Unreviewed
CVE-2018-0158 was published May 13, 2022
In the Linux kernel, the following vulnerability has been resolved: sctp: fix kernel-infoleak... High Unreviewed
CVE-2022-48855 was published Jul 16, 2024
A Missing Release of Memory after Effective Lifetime vulnerability in the routing process daemon ... High Unreviewed
CVE-2024-39549 was published Jul 11, 2024
A Missing Release of Memory after Effective Lifetime vulnerability in the rtlogd process of... High Unreviewed
CVE-2024-39550 was published Jul 11, 2024
Stormshield SNS with versions before 3.7.18, 3.11.6 and 4.1.6 has a memory-management defect in... High Unreviewed
CVE-2021-28665 was published May 24, 2022
A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The... High Unreviewed
CVE-2023-32247 was published Jul 24, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database