Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
1,996
Maven
5,000+
npm
3,709
NuGet
661
pip
3,348
Pub
11
RubyGems
885
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+

255,714 advisories

Loading
In SMF_ParseMetaEvent of eas_smf.c, there is a possible integer overflow. This could lead to... High Unreviewed
CVE-2018-9348 was published Nov 19, 2024
In the LG LAF component, there is a special command that allowed modification of certain... High Unreviewed
CVE-2018-9364 was published Nov 19, 2024
In BnAudioPolicyService::onTransact of AudioPolicyService.cpp, there is a possible information... Moderate Unreviewed
CVE-2018-9345 was published Nov 19, 2024
In ResStringPool::setTo of ResourceTypes.cpp, it's possible for an attacker to control the value... High Unreviewed
CVE-2018-9340 was published Nov 19, 2024
In BnAudioPolicyService::onTransact of AudioPolicyService.cpp, there is a possible information... Moderate Unreviewed
CVE-2018-9346 was published Nov 19, 2024
In writeTypedArrayList and readTypedArrayList of Parcel.java, there is a possible escalation of... High Unreviewed
CVE-2018-9339 was published Nov 19, 2024
In l2cble_process_sig_cmd of l2c_ble.cc, there is a possible out of bounds read due to a missing... High Unreviewed
CVE-2018-9419 was published Nov 20, 2024
In createPhonebookDialogView and createMapDialogView of BluetoothPermissionActivity.java, there... High Unreviewed
CVE-2018-9432 was published Nov 20, 2024
In writeInplace of Parcel.cpp, there is a possible information leak across processes, using... Moderate Unreviewed
CVE-2018-9421 was published Nov 20, 2024
In f_hidg_read and hidg_disable of f_hid.c, there is a possible use-after-free due to improper... High Unreviewed
CVE-2018-9417 was published Nov 20, 2024
In CryptoPlugin::decrypt of CryptoPlugin.cpp, there is a possible out of bounds write due to a... High Unreviewed
CVE-2018-9424 was published Nov 20, 2024
In the xmlSnprintfElementContent function of valid.c, there is a possible out of bounds write.... High Unreviewed
CVE-2018-9466 was published Nov 20, 2024
A SQL injection vulnerability in SEMCMS v.4.8, allows a remote attacker to obtain sensitive... Moderate Unreviewed
CVE-2024-36801 was published Jun 4, 2024
An HTTP digest authentication nonce value was generated using `rand()` which could lead to... Moderate Unreviewed
CVE-2024-4772 was published May 14, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check... Moderate Unreviewed
CVE-2024-46778 was published Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved: tcp_bpf: fix return value of... Moderate Unreviewed
CVE-2024-46783 was published Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved: userfaultfd: fix checks for... Moderate Unreviewed
CVE-2024-46787 was published Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved: nilfs2: protect references... Moderate Unreviewed
CVE-2024-46780 was published Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved: eventfs: Use list_del_rcu()... Moderate Unreviewed
CVE-2024-46785 was published Sep 18, 2024
Shenzhen Libituo Technology Co., Ltd LBT-T300-T400 v3.2 was discovered to contain a buffer... Moderate Unreviewed
CVE-2024-39181 was published Jul 9, 2024
A SQL injection vulnerability in /model/update_exam.php in Campcodes Complete Web-Based School... Critical Unreviewed
CVE-2024-34932 was published May 23, 2024
CRMEB <=5.4.0 is vulnerable to Incorrect Access Control. Users can bypass the front-end... High Unreviewed
CVE-2024-50653 was published Nov 15, 2024
simple-dhcp-server through ec976d2 allows remote attackers to cause a denial of service (daemon... Moderate Unreviewed
CVE-2023-50432 was published Apr 30, 2024
A buffer overflow occurs in utilities/ymodem/ry_sy.c in RT-Thread through 5.0.2 because of an... Moderate Unreviewed
CVE-2024-25394 was published Mar 27, 2024
A privacy issue was addressed with improved private data redaction for log entries. This issue is... Moderate Unreviewed
CVE-2024-23205 was published Mar 8, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database