Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+

1,404 advisories

Loading
Several Ricoh printers have multiple buffer overflows parsing HTTP cookie headers, which allow an... Critical Unreviewed
CVE-2019-14300 was published May 24, 2022
Several Ricoh printers have multiple buffer overflows parsing LPD packets, which allow an... Critical Unreviewed
CVE-2019-14308 was published May 24, 2022
Several Ricoh printers have multiple buffer overflows parsing HTTP parameter settings for SNMP,... Critical Unreviewed
CVE-2019-14307 was published May 24, 2022
Buffer Overflow in dacterea in Delta Controls enteliBUS Manager V3.40_B-571848 allows remote... Critical Unreviewed
CVE-2019-9569 was published May 24, 2022
In Xymon through 4.3.28, a buffer overflow vulnerability exists in history.c. Critical Unreviewed
CVE-2019-13451 was published May 24, 2022
In Xymon through 4.3.28, a buffer overflow vulnerability exists in reportlog.c. Critical Unreviewed
CVE-2019-13452 was published May 24, 2022
In Xymon through 4.3.28, a buffer overflow exists in the status-log viewer CGI because of  ... Critical Unreviewed
CVE-2019-13484 was published May 24, 2022
Lute-Tab before 2019-08-23 has a buffer overflow in pdf_print.cc. Critical Unreviewed
CVE-2019-15783 was published May 24, 2022
ROBOTIS Dynamixel SDK through 3.7.11 has a buffer overflow via a large rxpacket. Critical Unreviewed
CVE-2019-15786 was published May 24, 2022
Various Lexmark products have a Buffer Overflow (issue 3 of 3). Critical Unreviewed
CVE-2019-9933 was published May 24, 2022
Various Lexmark products have a Buffer Overflow (issue 2 of 3). Critical Unreviewed
CVE-2019-9932 was published May 24, 2022
Insufficient boundary checks when processing the JPEG APP12 block marker in the GD extension... Critical Unreviewed
CVE-2019-11925 was published May 24, 2022
Insufficient boundary checks when processing M_SOFx markers from JPEG headers in the GD extension... Critical Unreviewed
CVE-2019-11926 was published May 24, 2022
Insufficient boundary checks when formatting numbers in number_format allows read/write access to... Critical Unreviewed
CVE-2019-11929 was published May 24, 2022
NetSarang XFTP Client 6.0149 and earlier version contains a buffer overflow vulnerability caused... Critical Unreviewed
CVE-2019-17320 was published May 24, 2022
Boa through 0.94.14rc21 allows remote attackers to trigger an out-of-memory (OOM) condition... Critical Unreviewed
CVE-2018-21027 was published May 24, 2022
Buffer overflow in LabF nfsAxe FTP client 3.7 allows an attacker to execute code remotely. Critical Unreviewed
CVE-2017-14742 was published May 24, 2022
The HTTP/2 experimental feature in Apache Traffic Server 5.3.x before 5.3.1 allows remote... Critical Unreviewed
CVE-2015-3249 was published May 24, 2022
Multiple vulnerabilities in Cisco IOS Software for Cisco 809 and 829 Industrial Integrated... Critical Unreviewed
CVE-2020-3198 was published May 24, 2022
Multiple vulnerabilities in Cisco IOS Software for Cisco 809 and 829 Industrial Integrated... Critical Unreviewed
CVE-2020-3258 was published May 24, 2022
A malicious or compromised UApp or ABL can send a malformed system call to the bootloader, which... Critical Unreviewed
CVE-2021-46760 was published May 9, 2023
The SAP Web Dispatcher - versions WEBDISP 7.53, WEBDISP 7.54, WEBDISP 7.77, WEBDISP 7.85, WEBDISP... Critical Unreviewed
CVE-2023-35871 was published Jul 11, 2023
An out-of-bounds write vulnerability exists in the tiff_planar_adobe functionality of Accusoft... Critical Unreviewed
CVE-2023-32284 was published Sep 25, 2023
A heap-based buffer overflow vulnerability exists in the pictwread functionality of Accusoft... Critical Unreviewed
CVE-2023-35002 was published Sep 25, 2023
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack... Critical Unreviewed
CVE-2023-44020 was published Sep 27, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database