Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+

113 advisories

Loading
Dell Precision Rack, 14G Intel BIOS versions prior to 2.22.2, contains an Access of Memory... Low Unreviewed
CVE-2024-42425 was published Sep 10, 2024
Improper buffer restrictions in Intel(R) Media SDK software all versions may allow an... Low Unreviewed
CVE-2023-47169 was published May 16, 2024
Duplicate Advisory: Nokogiri updates packaged libxml2 to v2.12.7 to resolve CVE-2024-34459 Low
GHSA-r3w4-36x6-7r99 was published for nokogiri (RubyGems) May 14, 2024 withdrawn
Vyper's `_abi_decode` vulnerable to Memory Overflow Low
CVE-2024-26149 was published for vyper (pip) Feb 26, 2024
minaminao-osec
Vyper's external calls can overflow return data to return input buffer Low
CVE-2024-24560 was published for vyper (pip) Feb 2, 2024
zobront
Arm provides multiple helpers to clean & invalidate the cache for a given region. This is, for... Low Unreviewed
CVE-2023-46837 was published Jan 5, 2024
Arm provides multiple helpers to clean & invalidate the cache for a given region. This is, for... Low Unreviewed
CVE-2023-34321 was published Jan 5, 2024
Improper buffer restrictions in some Intel(R) QAT Library software before version 22.07.1 may... Low Unreviewed
CVE-2023-22313 was published Nov 14, 2023
A vulnerability in SiLabs Z/IP Gateway 7.18.01 and earlier allows an authenticated attacker... Low Unreviewed
CVE-2023-0969 was published Jun 21, 2023
An issue was discovered in the Arm Mali Kernel Driver. A non-privileged user can make improper... Low Unreviewed
CVE-2022-46396 was published Apr 11, 2023
Dell Alienware m17 R5 BIOS version prior to 1.2.2 contain a buffer access vulnerability. A... Low Unreviewed
CVE-2022-34399 was published Jan 18, 2023
linux-loader reading beyond EOF could lead to infinite loop Low
CVE-2022-23523 was published for linux-loader (Rust) Dec 12, 2022
likebreath
Bootloader contains a vulnerability in the NV3P server where any user with physical access... Low Unreviewed
CVE-2021-1111 was published May 24, 2022
A flaw was found in the Linux kernel in versions before 5.4.92 in the BPF protocol. This flaw... Low Unreviewed
CVE-2021-20239 was published May 24, 2022
Improper buffer restrictions in the Intel(R) Wireless for Open Source before version 1.5 may... Low Unreviewed
CVE-2020-8689 was published May 24, 2022
Improper buffer restrictions in system driver for some Intel(R) Graphics Drivers before version... Low Unreviewed
CVE-2020-8683 was published May 24, 2022
An information disclosure vulnerability exists when the Windows kernel fails to properly... Low Unreviewed
CVE-2020-1419 was published May 24, 2022
VMware ESXi (6.7 before ESXi670-202004101-SG and 6.5 before ESXi650-202005401-SG), VMware... Low Unreviewed
CVE-2020-3959 was published May 24, 2022
A denial of service vulnerability exists when Windows improperly handles objects in memory, aka ... Low Unreviewed
CVE-2020-1076 was published May 24, 2022
Improper buffer restrictions in kernel mode driver for Intel(R) PROSet/Wireless WiFi products... Low Unreviewed
CVE-2020-0558 was published May 24, 2022
The GNU C Library (aka glibc or libc6) before 2.32 could overflow an on-stack buffer during range... Low Unreviewed
CVE-2020-10029 was published May 24, 2022
An access issue was addressed with improved memory management. This issue is fixed in iOS 13.3.1... Low Unreviewed
CVE-2020-3836 was published May 24, 2022
An issue was discovered in the Linux kernel 5.4 and 5.5 through 5.5.6 on the AArch64 architecture... Low Unreviewed
CVE-2020-9391 was published May 24, 2022
Symantec Endpoint Protection (SEP) and Symantec Endpoint Protection Small Business Edition (SEP... Low Unreviewed
CVE-2020-5826 was published May 24, 2022
An information disclosure vulnerability exists in the Cryptography Next Generation (CNG) service... Low Unreviewed
CVE-2020-0748 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database