Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+

1,404 advisories

Loading
Potential memory corruption in arrayfire Critical
CVE-2018-20998 was published for arrayfire (pip) Aug 25, 2021
westonsteimel
Dulwich Buffer Overflow when handling pack files Critical
CVE-2015-0838 was published for dulwich (pip) May 17, 2022
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack... Critical Unreviewed
CVE-2023-44013 was published Sep 27, 2023
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain multiple... Critical Unreviewed
CVE-2023-44014 was published Sep 27, 2023
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack... Critical Unreviewed
CVE-2023-44016 was published Sep 27, 2023
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack... Critical Unreviewed
CVE-2023-44017 was published Sep 27, 2023
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack... Critical Unreviewed
CVE-2023-44019 was published Sep 27, 2023
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack... Critical Unreviewed
CVE-2023-44018 was published Sep 27, 2023
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack... Critical Unreviewed
CVE-2023-44015 was published Sep 27, 2023
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Western... Critical Unreviewed
CVE-2024-22170 was published Sep 27, 2024
Memory safety bugs present in Firefox 130, Firefox ESR 115.15, Firefox ESR 128.2, and Thunderbird... Critical Unreviewed
CVE-2024-9401 was published Oct 1, 2024
Memory safety bugs present in Firefox 130, Firefox ESR 128.2, and Thunderbird 128.2. Some of... Critical Unreviewed
CVE-2024-9402 was published Oct 1, 2024
Pillow Integer overflow in ImagingResampleHorizontal Critical
CVE-2016-4009 was published for pillow (pip) Jul 24, 2018
Out of bounds memory access in WebHID in Google Chrome prior to 111.0.5563.110 allowed a remote... Critical Unreviewed
CVE-2023-1529 was published Mar 21, 2023
A heap memory corruption problem (use after free) can be triggered in libgetdata v0.10.0 when... Critical Unreviewed
CVE-2021-20204 was published May 24, 2022
Buffer Overflow in pycrypto Critical
CVE-2013-7459 was published for pycrypto (pip) Dec 14, 2018
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 49.0,... Critical Unreviewed
CVE-2016-5257 was published May 14, 2022
Memory safety bugs were reported in Firefox 52, Firefox ESR 45.8, Firefox ESR 52, and Thunderbird... Critical Unreviewed
CVE-2017-5429 was published May 14, 2022
A buffer overflow in WebGL triggerable by web content, resulting in a potentially exploitable... Critical Unreviewed
CVE-2017-5459 was published May 14, 2022
Heap-based buffer overflow in the nsCaseTransformTextRunFactory::TransformString function in... Critical Unreviewed
CVE-2016-5270 was published May 14, 2022
Memory safety bugs present in Firefox 60, Firefox ESR 60, and Firefox ESR 52.8. Some of these... Critical Unreviewed
CVE-2018-5188 was published May 14, 2022
Fixed potential buffer overflows in generated Firefox code due to CVE-2016-6354 issue in Flex.... Critical Unreviewed
CVE-2017-5469 was published May 14, 2022
A buffer overflow can occur when the image renderer attempts to paint non-displayable SVG... Critical Unreviewed
CVE-2017-7786 was published May 14, 2022
During DOM manipulations of the accessibility tree through script, the DOM tree can become out of... Critical Unreviewed
CVE-2017-5464 was published May 14, 2022
CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability... Critical Unreviewed
CVE-2024-8938 was published Nov 13, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database