GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,383
Erlang
33
GitHub Actions
22
Go
2,141
Maven
5,000+
npm
3,803
NuGet
687
pip
3,479
Pub
12
RubyGems
897
Rust
898
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
1,370 advisories
Filter by severity
In barebox before 2025.01.0, request2size in common/dlmalloc.c has an integer overflow, a related...
High
Unreviewed
CVE-2024-57261
was published
Feb 19, 2025
In barebox before 2025.01.0, ext4fs_read_symlink has an integer overflow for zalloc (adding one...
High
Unreviewed
CVE-2024-57262
was published
Feb 19, 2025
An integer overflow in sqfs_resolve_symlink in Das U-Boot before 2025.01-rc1 occurs via a crafted...
High
Unreviewed
CVE-2024-57255
was published
Feb 19, 2025
Integer overflows in memory allocation in Das U-Boot before 2025.01-rc1 occur for a crafted...
High
Unreviewed
CVE-2024-57258
was published
Feb 19, 2025
An integer overflow in sqfs_inode_size in Das U-Boot before 2025.01-rc1 occurs in the symlink...
High
Unreviewed
CVE-2024-57254
was published
Feb 19, 2025
An integer overflow in ext4fs_read_symlink in Das U-Boot before 2025.01-rc1 occurs for zalloc ...
High
Unreviewed
CVE-2024-57256
was published
Feb 19, 2025
Integer Overflow or Wraparound vulnerability in Lexmark International CX, XC, CS, et. Al. ...
High
Unreviewed
CVE-2024-11347
was published
Feb 13, 2025
In DevmemXIntMapPages of devicemem_server.c, there is a possible arbitrary code execution due to...
High
Unreviewed
CVE-2024-34733
was published
Jan 28, 2025
An integer overflow was addressed through improved input validation. This issue is fixed in macOS...
High
Unreviewed
CVE-2025-24156
was published
Jan 28, 2025
Windows Telephony Service Remote Code Execution Vulnerability
High
Unreviewed
CVE-2025-21243
was published
Jan 14, 2025
Windows Telephony Service Remote Code Execution Vulnerability
High
Unreviewed
CVE-2025-21244
was published
Jan 14, 2025
Integer overflow vulnerability during glTF model loading in the 3D engine module
Impact:...
High
Unreviewed
CVE-2024-56451
was published
Jan 8, 2025
Memory corruption can occur if an already verified IFS2 image is overwritten, bypassing boot...
High
Unreviewed
CVE-2024-45555
was published
Jan 6, 2025
Dell ECS, versions prior to 3.8.1.3 contains an arithmetic overflow vulnerability exists in...
High
Unreviewed
CVE-2024-51540
was published
Dec 26, 2024
Animate versions 23.0.8, 24.0.5 and earlier are affected by an Integer Overflow or Wraparound...
High
Unreviewed
CVE-2024-52983
was published
Dec 10, 2024
In oemCallback of ril.cpp, there is a possible out of bounds write due to an
integer overflow...
High
Unreviewed
CVE-2018-9404
was published
Dec 5, 2024
Transient DOS while parsing the ML IE when a beacon with common info length of the ML IE greater...
High
Unreviewed
CVE-2024-33063
was published
Dec 2, 2024
In String16 of String16.cpp, there is a possible out of bounds write due to an integer overflow....
High
Unreviewed
CVE-2017-13323
was published
Nov 28, 2024
Integer overflow in Layout in Google Chrome prior to 129.0.6668.89 allowed a remote attacker to...
High
Unreviewed
CVE-2024-7025
was published
Nov 27, 2024
An issue was discovered in MBed OS 6.16.0. During processing of HCI packets, the software...
High
Unreviewed
CVE-2024-48983
was published
Nov 20, 2024
In xmlMemStrdupLoc of xmlmemory.c, there is a possible out-of-bounds write due to an integer...
High
Unreviewed
CVE-2018-9472
was published
Nov 20, 2024
In IMSA_Recv_Thread and VT_IMCB_Thread of ImsaClient.cpp and VideoTelephony.c, there is a...
High
Unreviewed
CVE-2018-9366
was published
Nov 19, 2024
In SMF_ParseMetaEvent of eas_smf.c, there is a possible integer overflow. This could lead to...
High
Unreviewed
CVE-2018-9348
was published
Nov 19, 2024
Integer Overflow or Wraparound vulnerability in Cesanta Mongoose Web Server v7.14 allows an...
High
Unreviewed
CVE-2024-42384
was published
Nov 18, 2024
ProTip!
Advisories are also available from the
GraphQL API