Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,982 advisories

Loading
The HIPP module has a vulnerability of bypassing the check of the data transferred in the kernel... Critical Unreviewed
CVE-2022-38986 was published Oct 14, 2022
The Mikrotik RouterOS web server allows memory corruption in releases before Stable 6.38.5 and... Critical Unreviewed
CVE-2017-20149 was published Oct 15, 2022
A vulnerability has been identified in RUGGEDCOM ROS M2100 (All versions < V4.3.7), RUGGEDCOM ROS... Critical Unreviewed
CVE-2021-31895 was published May 24, 2022
Multiple heap buffer overflows in tiffcrop.c utility in libtiff library Version 4.4.0 allows... Critical Unreviewed
CVE-2022-3570 was published Oct 21, 2022
D-Link DIR-816 A2 1.10 B05 was discovered to contain a stack overflow via the pskValue parameter... Critical Unreviewed
CVE-2022-43001 was published Oct 27, 2022
D-Link DIR-816 A2 1.10 B05 was discovered to contain a stack overflow via the wizardstep54_pskpwd... Critical Unreviewed
CVE-2022-43002 was published Oct 27, 2022
D-Link DIR-816 A2 1.10 B05 was discovered to contain a stack overflow via the pskValue parameter... Critical Unreviewed
CVE-2022-43003 was published Oct 27, 2022
D-Link DIR-816 A2 1.10 B05 was discovered to contain a stack overflow via the srcip parameter at ... Critical Unreviewed
CVE-2022-42998 was published Oct 27, 2022
D-Link DIR-816 A2 1.10 B05 was discovered to contain a stack overflow via the wizardstep4_pskpwd... Critical Unreviewed
CVE-2022-43000 was published Oct 27, 2022
A memory corruption vulnerability in Fluent Bit versions 2.0.7 thru 3.0.3. This issue lies in the... Critical Unreviewed
CVE-2024-4323 was published May 20, 2024
In wlan service, there is a possible out of bounds write due to improper input validation. This... Critical Unreviewed
CVE-2024-20017 was published Mar 4, 2024
Memory safety bugs present in Firefox 113. Some of these bugs showed evidence of memory... Critical Unreviewed
CVE-2023-34417 was published Jun 19, 2023
wasmtime vulnerable to guest-controlled out-of-bounds read/write on x86_64 Critical
CVE-2023-26489 was published for cranelift-codegen (Rust) Mar 9, 2023
alexcrichton
Out-of-bounds Write vulnerability in mod_sed of Apache HTTP Server allows an attacker to... Critical Unreviewed
CVE-2022-23943 was published Mar 15, 2022
A carefully crafted request body can cause a buffer overflow in the mod_lua multipart parser (r... Critical Unreviewed
CVE-2021-44790 was published Feb 8, 2022
ap_escape_quotes() may write beyond the end of a buffer when given malicious input. No included... Critical Unreviewed
CVE-2021-39275 was published May 24, 2022
D-Link DIR-882 1.10B02 and 1.20B06 is vulnerable to Buffer Overflow via webGetVarString. Critical Unreviewed
CVE-2022-44807 was published Nov 22, 2022
D-Link DIR-882 1.10B02 and 1.20B06 is vulnerable to Buffer Overflow. Critical Unreviewed
CVE-2022-44806 was published Nov 22, 2022
D-Link DIR-882 1.10B02 and1.20B06 is vulnerable to Buffer Overflow via the websRedirect function. Critical Unreviewed
CVE-2022-44804 was published Nov 22, 2022
D-Link DIR878 1.02B04 and 1.02B05 are vulnerable to Buffer Overflow. Critical Unreviewed
CVE-2022-44202 was published Nov 22, 2022
Netgear R7000P V1.3.0.8, V1.3.1.64 is vulnerable to Buffer Overflow via parameters:... Critical Unreviewed
CVE-2022-44200 was published Nov 22, 2022
Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow via parameters apmode_dns1_pri and... Critical Unreviewed
CVE-2022-44194 was published Nov 22, 2022
Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow in /usr/sbin/httpd via parameter... Critical Unreviewed
CVE-2022-44188 was published Nov 22, 2022
Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow in /usr/sbin/httpd via parameters:... Critical Unreviewed
CVE-2022-44193 was published Nov 22, 2022
Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow in /usr/sbin/httpd via parameter... Critical Unreviewed
CVE-2022-44184 was published Nov 22, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database