Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
44
GitHub Actions
46
Go
3,270
Maven
5,000+
npm
5,000+
NuGet
867
pip
4,517
Pub
12
RubyGems
998
Rust
1,194
Swift
51
Unreviewed advisories
All unreviewed
5,000+

65 advisories

Loading
Soroban: Muxed address<->ScVal conversions may break after a conversion failure Low
GHSA-pm4j-7r4q-ccg8 was published for soroban-env-host (Rust) Mar 7, 2026
ImageMagick: Integer overflow or wraparound and incorrect conversion between numeric types in the internal SVG decoder High
CVE-2026-25989 was published for Magick.NET-Q16-AnyCPU (NuGet) Feb 24, 2026
petermalone Credited to petermalone
CoreDNS: DNS Cache Pinning via etcd Lease ID Confusion High
CVE-2025-58063 was published for github.com/coredns/coredns (Go) Sep 9, 2025
thevilledev Credited to thevilledev
Incorrect conversion between numeric types in Microsoft Office Word allows an unauthorized... High Unreviewed
CVE-2025-53733 was published Aug 12, 2025
Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-49093 was published Dec 12, 2024
The Wallet for WooCommerce plugin for WordPress is vulnerable to incorrect conversion between... Moderate Unreviewed
CVE-2024-7747 was published Nov 28, 2024
DHCP Server Service Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38044 was published Jul 9, 2024
A vulnerability has been identified in SIPLUS TIM 1531 IRC (6AG1543-1MX00-7XE0) (All versions <... Moderate Unreviewed
CVE-2022-40225 was published Jun 11, 2024
vyper's range(start, start + N) reverts for negative numbers Moderate
CVE-2024-32481 was published for vyper (pip) Apr 25, 2024
trocher Credited to trocher
Microsoft ODBC Driver Remote Code Execution Vulnerability High Unreviewed
CVE-2024-26162 was published Mar 12, 2024
Incorrect code generation could have led to unexpected numeric conversions and potential... High Unreviewed
CVE-2024-1552 was published Feb 20, 2024
Dell BIOS contains a Signed to Unsigned Conversion Error vulnerability. A local authenticated... Moderate Unreviewed
CVE-2023-28063 was published Feb 6, 2024
Okio Signed to Unsigned Conversion Error vulnerability Moderate
CVE-2023-3635 was published for com.squareup.okio:okio (Maven) Jul 12, 2023
trettstadtnlb Credited to trettstadtnlb and adrienpessu adrienpessu adrienpessu
A vulnerability in the hardware-based SSL/TLS cryptography functionality of Cisco Adaptive... High Unreviewed
CVE-2023-20006 was published Jun 28, 2023
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where sign... High Unreviewed
CVE-2023-0185 was published Apr 1, 2023
An integer conversion vulnerability exists in the SORBAx64.dll RecvPacket functionality of... Critical Unreviewed
CVE-2022-43663 was published Mar 20, 2023
Oxenstored 32->31 bit integer truncation issues Integers in Ocaml are 63 or 31 bits of signed... Moderate Unreviewed
CVE-2022-42324 was published Nov 1, 2022
An integer conversion error in Hermes bytecode generation, prior to commit... Critical Unreviewed
CVE-2022-40138 was published Oct 11, 2022
Besu VM vulnerable to gas allocation error in CALL operations Critical
CVE-2022-36025 was published for org.hyperledger.besu:evm (Maven) Sep 23, 2022
holiman Credited to holiman
An integer coercion error was found in the openvswitch kernel module. Given a sufficiently large... High Unreviewed
CVE-2022-2639 was published Sep 2, 2022
Apache Xalan Java XSLT library integer truncation issue when processing malicious XSLT stylesheets High
CVE-2022-34169 was published for xalan:xalan (Maven) Jul 20, 2022
udengaardandersent-ELS Credited to udengaardandersent-ELS, Diddern, and skuma762_uhg Diddern Diddern
skuma762_uhg skuma762_uhg
A vulnerability was found in FFmpeg 2.0. It has been declared as problematic. Affected by this... High Unreviewed
CVE-2014-125011 was published Jun 19, 2022
A vulnerability was found in FFmpeg 2.0. It has been classified as problematic. Affected is an... Moderate Unreviewed
CVE-2014-125012 was published Jun 19, 2022
An information disclosure vulnerability exists in the /proc/pid/syscall functionality of Linux... Moderate Unreviewed
CVE-2020-28588 was published May 24, 2022
An exploitable signed conversion vulnerability exists in the TextMaker document parsing... High Unreviewed
CVE-2020-13545 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database