GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,130 advisories
Filter by severity
In da, there is a possible out of bounds write due to an integer overflow. This could lead to...
Moderate
Unreviewed
CVE-2024-20025
was published
Mar 4, 2024
Integer Overflow or Wraparound in Google TensorFlow
Critical
CVE-2018-7575
was published
for
tensorflow
(pip)
Apr 30, 2019
In the Linux kernel, the following vulnerability has been resolved:
CDC-NCM: avoid overflow in...
Moderate
Unreviewed
CVE-2022-48938
was published
Aug 22, 2024
TensorFlow has segfault in array_ops.upper_bound
High
CVE-2023-33976
was published
for
tensorflow
(pip)
Jul 30, 2024
Fiona affected by CVE-2023-45853 related to MiniZip madler-zlib
Critical
GHSA-q5fm-55c2-v6j9
was published
for
fiona
(pip)
Jul 16, 2024
In the Linux kernel, the following vulnerability has been resolved:
ptp: fix integer overflow in...
High
Unreviewed
CVE-2024-40994
was published
Jul 12, 2024
In the Linux kernel, the following vulnerability has been resolved:
block/ioctl: prefer...
High
Unreviewed
CVE-2024-41000
was published
Jul 12, 2024
An issue in newlib v.4.3.0 allows an attacker to execute arbitrary code via the time unit scaling...
Critical
Unreviewed
CVE-2024-30949
was published
Aug 20, 2024
Buffer Overflow vulnerability in mz-automation.de libiec61859 v.1.4.0 allows a remote attacker to...
Moderate
Unreviewed
CVE-2024-25366
was published
Feb 20, 2024
In _MMU_AllocLevel of mmu_common.c, there is a possible arbitrary code execution due to an...
High
Unreviewed
CVE-2024-31333
was published
Aug 16, 2024
In attributeBytesBase64 and attributeBytesHex of BinaryXmlSerializer.java, there is a possible...
High
Unreviewed
CVE-2024-34740
was published
Aug 16, 2024
InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by an Integer Overflow or...
High
Unreviewed
CVE-2024-41851
was published
Aug 14, 2024
Integer overflow in firmware for some Intel(R) CSME may allow an unauthenticated user to...
Moderate
Unreviewed
CVE-2024-21844
was published
Aug 14, 2024
Windows Graphics Component Remote Code Execution Vulnerability
High
Unreviewed
CVE-2023-21823
was published
Feb 14, 2023
InCopy versions 18.5.2, 19.4 and earlier are affected by an Integer Overflow or Wraparound...
High
Unreviewed
CVE-2024-41858
was published
Aug 14, 2024
Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38144
was published
Aug 13, 2024
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-38128
was published
Aug 13, 2024
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38215
was published
Aug 13, 2024
Dell BSAFE Crypto-C Micro Edition 4.1.5 and Dell BSAFE Micro Edition Suite, versions 4.0 through...
Moderate
Unreviewed
CVE-2023-28074
was published
Jul 31, 2024
Memory corruption while allocating memory in HGSL driver.
High
Unreviewed
CVE-2024-33022
was published
Aug 5, 2024
Transient DOS while parsing the ML IE when a beacon with length field inside the common info of...
High
Unreviewed
CVE-2024-33024
was published
Aug 5, 2024
In the Linux kernel, the following vulnerability has been resolved:
media: dvb-frontends:...
Moderate
Unreviewed
CVE-2024-42223
was published
Jul 30, 2024
Integer overflow in libaom internal function img_alloc_helper can lead to heap buffer overflow....
Critical
Unreviewed
CVE-2024-5171
was published
Jun 5, 2024
In the vrrp_ipsets_handler handler (fglobal_parser.c) of keepalived through 2.3.1, an integer...
Critical
Unreviewed
CVE-2024-41184
was published
Jul 18, 2024
An issue in Academy Software Foundation openexr v.3.2.3 and before allows a local attacker to...
Low
Unreviewed
CVE-2024-31047
was published
Apr 9, 2024
ProTip!
Advisories are also available from the
GraphQL API