Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,939
Maven
5,000+
npm
3,677
NuGet
643
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+

12,746 advisories

Loading
Heap-based buffer overflow in the Local Security Authority Subsystem Service (LSASS), as used in... High Unreviewed
CVE-2010-0820 was published May 2, 2022
Heap-based buffer overflow in Microsoft Data Access Components (MDAC) 2.8 SP1 and SP2 and Windows... High Unreviewed
CVE-2012-1891 was published May 13, 2022
A heap memory corruption problem (use after free) can be triggered in libgetdata v0.10.0 when... Critical Unreviewed
CVE-2021-20204 was published May 24, 2022
The Client/Server Run-time Subsystem (aka CSRSS) in the Win32 subsystem in Microsoft Windows XP... High Unreviewed
CVE-2011-1282 was published May 13, 2022
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix DEVMAP_HASH... High Unreviewed
CVE-2024-26885 was published Apr 17, 2024
Memory corruption when a compat IOCTL call is followed by another IOCTL call from userspace to a... High Unreviewed
CVE-2024-21455 was published Oct 7, 2024
Buffer overflow in Image RAW in Apple Mac OS X 10.5.8 and 10.6.2 allows remote attackers to... High Unreviewed
CVE-2010-0037 was published May 2, 2022
Improper Restriction of Operations within the Bounds of a Memory Buffer in Apache Tomcat High
CVE-2016-6817 was published for org.apache.tomcat:tomcat (Maven) May 14, 2022
sunSUNQ
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Heap-based buffer... High Unreviewed
CVE-2016-9428 was published May 17, 2022
Buffer overflow in CoreAudio in Apple Mac OS X 10.5.8 and 10.6.2 allows remote attackers to... High Unreviewed
CVE-2010-0036 was published May 2, 2022
Heap-based buffer overflow in the CreateDIBPatternBrushPt function in GDI in Microsoft Windows... High Unreviewed
CVE-2008-1083 was published May 1, 2022
Improper Restriction of Operations within the Bounds of a Memory Buffer in python-cjson Moderate
CVE-2010-1666 was published for python-cjson (pip) May 17, 2022
Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contain a... High Unreviewed
CVE-2024-29176 was published Jun 26, 2024
Out of bounds memory access in WebHID in Google Chrome prior to 111.0.5563.110 allowed a remote... Critical Unreviewed
CVE-2023-1529 was published Mar 21, 2023
Pillow Buffer overflow in Jpeg2KEncode.c High
CVE-2016-3076 was published for pillow (pip) May 17, 2022
Pillow Buffer overflow in ImagingFliDecode High
CVE-2016-0775 was published for Pillow (pip) Jul 24, 2018
Pillow Buffer overflow in ImagingLibTiffDecode Moderate
CVE-2016-0740 was published for pillow (pip) Jul 24, 2018
Out of bounds memory access in DOM Bindings in Google Chrome prior to 112.0.5615.49 allowed a... High Unreviewed
CVE-2023-1812 was published Apr 5, 2023
Microsoft Excel Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-1714. High Unreviewed
CVE-2021-1713 was published May 24, 2022
Pillow buffer overflow in ImagingPcdDecode High
CVE-2016-2533 was published for pillow (pip) Jul 24, 2018
Pillow Integer overflow in ImagingResampleHorizontal Critical
CVE-2016-4009 was published for pillow (pip) Jul 24, 2018
A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC)... High Unreviewed
CVE-2021-31882 was published May 24, 2022
A vulnerability has been identified in Tecnomatix Plant Simulation V2302 (All versions < V2302... High Unreviewed
CVE-2024-45472 was published Oct 8, 2024
A vulnerability has been identified in Tecnomatix Plant Simulation V2302 (All versions < V2302... High Unreviewed
CVE-2024-45474 was published Oct 8, 2024
A vulnerability has been identified in Tecnomatix Plant Simulation V2302 (All versions < V2302... High Unreviewed
CVE-2024-45468 was published Oct 8, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database