Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,678
NuGet
645
pip
3,297
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+

591 advisories

Loading
Buffer Overflow vulnerability in ASUS router RT-AX88U with firmware versions v3.0.0.4.388_24198... Critical Unreviewed
CVE-2024-33278 was published Jun 24, 2024
In the Linux kernel, the following vulnerability has been resolved: of: module: add buffer... Critical Unreviewed
CVE-2024-38541 was published Jun 19, 2024
Netatalk 3.2.0 has an off-by-one error and resultant heap-based buffer overflow because of... Critical Unreviewed
CVE-2024-38441 was published Jun 16, 2024
TOTOLINK A3700R V9.1.2u.6165_20211012 was discovered to contain a stack overflow via ssid5g in... Critical Unreviewed
CVE-2024-37637 was published Jun 14, 2024
TOTOLINK A3700R V9.1.2u.6165_20211012 was discovered to contain a stack overflow via ssid in the... Critical Unreviewed
CVE-2024-37635 was published Jun 13, 2024
Memory corruption in TZ Secure OS while Tunnel Invoke Manager initialization. Critical Unreviewed
CVE-2023-43538 was published Jun 3, 2024
Memory corruption in Hypervisor when platform information mentioned is not aligned. Critical Unreviewed
CVE-2023-43556 was published Jun 3, 2024
In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Don't let... Critical Unreviewed
CVE-2023-52735 was published May 21, 2024
Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.stb.mode parameter in the function... Critical Unreviewed
CVE-2024-35571 was published May 20, 2024
TOTOLINK LR350 V9.3.5u.6698_B20230810 was discovered to contain a stack overflow via the password... Critical Unreviewed
CVE-2024-35099 was published May 14, 2024
Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow... Critical Unreviewed
CVE-2024-34945 was published May 14, 2024
HDF5 Library through 1.14.3 has a heap buffer overflow in H5O__mtime_new_encode in H5Omtime.c. Critical Unreviewed
CVE-2024-33874 was published May 14, 2024
An issue was discovered on certain Nuki Home Solutions devices. The code used to parse the JSON... Critical Unreviewed
CVE-2022-32504 was published May 14, 2024
HDF5 through 1.14.3 contains a buffer overflow in H5Z__filter_scaleoffset, resulting in the... Critical Unreviewed
CVE-2024-29159 was published May 14, 2024
wasm3 v0.5.0 was discovered to contain a global buffer overflow which leads to segmentation fault... Critical Unreviewed
CVE-2024-34252 was published May 6, 2024
A buffer overflow vulnerability exists in all versions of sngrep since v0.4.2, due to improper... Critical Unreviewed
CVE-2024-3119 was published Apr 10, 2024
A stack-buffer overflow vulnerability exists in all versions of sngrep since v1.4.1. The flaw is... Critical Unreviewed
CVE-2024-3120 was published Apr 10, 2024
transpose: Buffer overflow due to integer overflow Critical
GHSA-5gmm-6m36-r7jh was published for transpose (Rust) Apr 5, 2024
Tenda AX1803 v1.0.0.1 contains a stack overflow via the serviceName parameter in the function... Critical Unreviewed
CVE-2024-30620 was published Apr 2, 2024
Tenda F1202 v1.2.0.20(408) has a stack overflow vulnerability located in the funcpara1 parameter... Critical Unreviewed
CVE-2024-30635 was published Mar 29, 2024
Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the schedStartTime parameter of the... Critical Unreviewed
CVE-2024-30602 was published Mar 28, 2024
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the security parameter of the... Critical Unreviewed
CVE-2024-30584 was published Mar 28, 2024
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability located in the deviceName... Critical Unreviewed
CVE-2024-30593 was published Mar 28, 2024
StringIO buffer overread vulnerability Critical
CVE-2024-27280 was published for stringio (RubyGems) Mar 25, 2024
Shenzhen Libituo Technology Co., Ltd LBT-T300-mini v1.2.9 was discovered to contain a buffer... Critical Unreviewed
CVE-2024-29243 was published Mar 21, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database