Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,383
Erlang
33
GitHub Actions
22
Go
2,141
Maven
5,000+
npm
3,803
NuGet
687
pip
3,479
Pub
12
RubyGems
897
Rust
898
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

70 advisories

Loading
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... Critical Unreviewed
CVE-2022-2848 was published Mar 29, 2023
A heap-based buffer overflow vulnerability exists in the HTTP Server functionality of Weston... Critical Unreviewed
CVE-2023-45318 was published Feb 20, 2024
A buffer overflow vulnerability in WhatsApp VOIP stack allowed remote code execution via... Critical Unreviewed
CVE-2019-3568 was published May 24, 2022
A flaw was found in htmldoc before v1.9.12. Heap buffer overflow in pspdf_prepare_outpages(), in... Critical Unreviewed
CVE-2021-23165 was published Mar 17, 2022
SunGrow WiNet-SV200.001.00.P027 and earlier versions is vulnerable to heap-based buffer overflow... Critical Unreviewed
CVE-2024-50698 was published Jan 25, 2025
OpenImageIO v3.1.0.0dev was discovered to contain a heap overflow via the component... Critical Unreviewed
CVE-2024-55192 was published Jan 24, 2025
A heap-based buffer overflow vulnerability exists in the .egi parsing functionality of The Biosig... Critical Unreviewed
CVE-2024-21795 was published Feb 20, 2024
A heap-based buffer overflow flaw was found in the rsync daemon. This issue is due to improper... Critical Unreviewed
CVE-2024-12084 was published Jan 15, 2025
A vulnerability has been identified in Opcenter Execution Foundation (All versions), Opcenter... Critical Unreviewed
CVE-2024-49775 was published Dec 16, 2024
Handlers for *_CFG_PAGE read / write ioctls in the mpr, mps, and mpt drivers allocated a buffer... Critical Unreviewed
CVE-2022-23086 was published Feb 15, 2024
Wyze Cam v3 Realtek Wi-Fi Driver Heap-Based Buffer Overflow Remote Code Execution Vulnerability.... Critical Unreviewed
CVE-2024-6246 was published Nov 22, 2024
A heap buffer overflow could be triggered by sending a specific packet to TCP port 7700. Critical Unreviewed
CVE-2023-29125 was published Nov 5, 2024
HDF5 Library through 1.14.3 contains a heap-based buffer overflow in... Critical Unreviewed
CVE-2024-32615 was published May 14, 2024
Heap buffer overflow in Blink in Google Chrome prior to 101.0.4951.41 allowed a remote attacker... Critical Unreviewed
CVE-2022-4920 was published Jul 29, 2023
The vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC... Critical Unreviewed
CVE-2024-38812 was published Sep 17, 2024
A vulnerability has been identified in SIMATIC Information Server 2022 (All versions), SIMATIC... Critical Unreviewed
CVE-2024-33698 was published Sep 10, 2024
Tenda AX1806 V1.0.0.1 contains a heap overflow vulnerability in setSchedWifi function, in which... Critical Unreviewed
CVE-2023-47455 was published Nov 14, 2023
zlog 1.2.16 has a heap-based buffer overflow in struct zlog_rule_s while creating a new rule that... Critical Unreviewed
CVE-2024-22857 was published Mar 7, 2024
HDF5 Library through 1.14.3 contains a heap-based buffer overflow in H5HG_read in H5HG.c (called... Critical Unreviewed
CVE-2024-32621 was published May 14, 2024
HDF5 through 1.14.3 contains a heap buffer overflow in H5HG_read, resulting in the corruption of... Critical Unreviewed
CVE-2024-29157 was published May 14, 2024
Windows Network Virtualization Remote Code Execution Vulnerability Critical Unreviewed
CVE-2024-38160 was published Aug 13, 2024
Dnsmasq 2.86 has a heap-based buffer overflow in print_mac (called from log_packet and dhcp_reply). Critical Unreviewed
CVE-2021-45956 was published Jan 2, 2022
Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability Critical Unreviewed
CVE-2024-38076 was published Jul 9, 2024
Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability Critical Unreviewed
CVE-2024-38077 was published Jul 9, 2024
wasm3 v0.5.0 was discovered to contain a heap buffer overflow which leads to segmentation fault... Critical Unreviewed
CVE-2024-34249 was published May 6, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database