Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,154
NuGet
736
pip
3,953
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

11,120 advisories

Loading
A vulnerability classified as critical was found in Tenda A301 15.13.08.12. Affected by this... High Unreviewed
CVE-2024-6402 was published Jun 28, 2024
Factorio before 1.1.101 allows a crafted server to execute arbitrary code on clients via a custom... High Unreviewed
CVE-2024-39840 was published Jun 29, 2024
In gnss service, there is a possible out of bounds write due to improper input validation. This... Moderate Unreviewed
CVE-2024-20081 was published Jul 1, 2024
In gnss service, there is a possible out of bounds write due to improper input validation. This... Moderate Unreviewed
CVE-2024-20079 was published Jul 1, 2024
In faceid servive, there is a possible out of bounds write due to a missing bounds check. This... Moderate Unreviewed
CVE-2024-39429 was published Jul 1, 2024
In trusty service, there is a possible out of bounds write due to a missing bounds check. This... Moderate Unreviewed
CVE-2024-39428 was published Jul 1, 2024
In trusty service, there is a possible out of bounds write due to a missing bounds check. This... Moderate Unreviewed
CVE-2024-39427 was published Jul 1, 2024
In faceid servive, there is a possible out of bounds write due to a missing bounds check. This... Moderate Unreviewed
CVE-2024-39430 was published Jul 1, 2024
Memory corruption while processing IOCTL handler in FastRPC. High Unreviewed
CVE-2023-43554 was published Jul 1, 2024
Memory corruption when an invoke call and a TEE call are bound for the same trusted application. High Unreviewed
CVE-2024-21469 was published Jul 1, 2024
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre... High Unreviewed
CVE-2024-37077 was published Jul 2, 2024
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre... High Unreviewed
CVE-2024-37185 was published Jul 2, 2024
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre... High Unreviewed
CVE-2024-36260 was published Jul 2, 2024
Improper input validation in libmediaextractorservice.so prior to SMR Jul-2024 Release 1 allows... Moderate Unreviewed
CVE-2024-20893 was published Jul 2, 2024
Improper input validation in copying data to buffer cache in libsaped prior to SMR Jul-2024... Moderate Unreviewed
CVE-2024-20901 was published Jul 2, 2024
Out-of-Bounds Write vulnerability in Jungo WinDriver before 12.6.0 allows local attackers to... Moderate Unreviewed
CVE-2024-22103 was published Jul 2, 2024
Out-of-Bounds Write vulnerability in Jungo WinDriver before 12.5.1 allows local attackers to... Moderate Unreviewed
CVE-2024-22104 was published Jul 2, 2024
Out-of-Bounds Write vulnerability in Jungo WinDriver before 12.1.0 allows local attackers to... Moderate Unreviewed
CVE-2023-51778 was published Jul 2, 2024
Vulnerability in Realtek RtsPer driver for PCIe Card Reader (RtsPer.sys) before 10.0.22000.21355... High Unreviewed
CVE-2022-25480 was published Jul 2, 2024
Artifex Ghostscript before 10.03.0 has a stack-based buffer overflow in the pdfi_apply_filter()... Moderate Unreviewed
CVE-2024-29506 was published Jul 3, 2024
Artifex Ghostscript before 10.03.0 has a heap-based overflow when PDFPassword (e.g., for runpdf)... High Unreviewed
CVE-2024-29509 was published Jul 3, 2024
The interactive service in OpenVPN 2.6.9 and earlier allows an attacker to send data causing a... High Unreviewed
CVE-2024-27459 was published Jul 8, 2024
A stack-based buffer overflow vulnerability exists in the boa formWsc functionality of Realtek... High Unreviewed
CVE-2023-49867 was published Jul 8, 2024
A stack-based buffer overflow vulnerability exists in the boa formRoute functionality of Realtek... High Unreviewed
CVE-2023-41251 was published Jul 8, 2024
A stack-based buffer overflow vulnerability exists in the boa formDnsv6 functionality of Realtek... High Unreviewed
CVE-2023-48270 was published Jul 8, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database