Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,086
Maven
5,000+
npm
3,747
NuGet
674
pip
3,436
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

632 advisories

Loading
A potential security vulnerability has been identified in certain HP PC products using AMI BIOS,... Critical Unreviewed
CVE-2024-4143 was published Jul 16, 2024
A vulnerability in /goform/SetStaticRouteCfg in the sub_519F4 function in Tenda AX1806 1.0.0.1... Critical Unreviewed
CVE-2024-40415 was published Jul 15, 2024
Buffer Overflow vulnerability in ASUS router RT-AX88U with firmware versions v3.0.0.4.388_24198... Critical Unreviewed
CVE-2024-33278 was published Jun 24, 2024
In the Linux kernel, the following vulnerability has been resolved: of: module: add buffer... Critical Unreviewed
CVE-2024-38541 was published Jun 19, 2024
Netatalk 3.2.0 has an off-by-one error and resultant heap-based buffer overflow because of... Critical Unreviewed
CVE-2024-38441 was published Jun 16, 2024
TOTOLINK A3700R V9.1.2u.6165_20211012 was discovered to contain a stack overflow via ssid5g in... Critical Unreviewed
CVE-2024-37637 was published Jun 14, 2024
TOTOLINK A3700R V9.1.2u.6165_20211012 was discovered to contain a stack overflow via ssid in the... Critical Unreviewed
CVE-2024-37635 was published Jun 13, 2024
robdns commit d76d2e6 was discovered to contain a heap overflow via the component block->filename... Critical Unreviewed
CVE-2024-24192 was published Jun 7, 2024
Memory corruption in TZ Secure OS while Tunnel Invoke Manager initialization. Critical Unreviewed
CVE-2023-43538 was published Jun 3, 2024
Memory corruption in Hypervisor when platform information mentioned is not aligned. Critical Unreviewed
CVE-2023-43556 was published Jun 3, 2024
In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Don't let... Critical Unreviewed
CVE-2023-52735 was published May 21, 2024
Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.stb.mode parameter in the function... Critical Unreviewed
CVE-2024-35571 was published May 20, 2024
Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow... Critical Unreviewed
CVE-2024-34945 was published May 14, 2024
TOTOLINK LR350 V9.3.5u.6698_B20230810 was discovered to contain a stack overflow via the password... Critical Unreviewed
CVE-2024-35099 was published May 14, 2024
HDF5 Library through 1.14.3 has a heap buffer overflow in H5O__mtime_new_encode in H5Omtime.c. Critical Unreviewed
CVE-2024-33874 was published May 14, 2024
An issue was discovered on certain Nuki Home Solutions devices. The code used to parse the JSON... Critical Unreviewed
CVE-2022-32504 was published May 14, 2024
HDF5 through 1.14.3 contains a buffer overflow in H5Z__filter_scaleoffset, resulting in the... Critical Unreviewed
CVE-2024-29159 was published May 14, 2024
wasm3 v0.5.0 was discovered to contain a global buffer overflow which leads to segmentation fault... Critical Unreviewed
CVE-2024-34252 was published May 6, 2024
A stack-buffer overflow vulnerability exists in all versions of sngrep since v1.4.1. The flaw is... Critical Unreviewed
CVE-2024-3120 was published Apr 10, 2024
A buffer overflow vulnerability exists in all versions of sngrep since v0.4.2, due to improper... Critical Unreviewed
CVE-2024-3119 was published Apr 10, 2024
Tenda AX1803 v1.0.0.1 contains a stack overflow via the serviceName parameter in the function... Critical Unreviewed
CVE-2024-30620 was published Apr 2, 2024
Tenda F1202 v1.2.0.20(408) has a stack overflow vulnerability located in the funcpara1 parameter... Critical Unreviewed
CVE-2024-30635 was published Mar 29, 2024
Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the schedStartTime parameter of the... Critical Unreviewed
CVE-2024-30602 was published Mar 28, 2024
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability located in the deviceName... Critical Unreviewed
CVE-2024-30593 was published Mar 28, 2024
Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability in the security parameter of the... Critical Unreviewed
CVE-2024-30584 was published Mar 28, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database