GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,316
Maven
5,000+
npm
5,000+
NuGet
1,030
pip
5,000+
Pub
13
RubyGems
1,116
Rust
1,493
Swift
61
Unreviewed advisories
All unreviewed
5,000+
358 advisories
Filter by severity
In all Android releases from CAF using the Linux kernel, an integer underflow vulnerability...
High
Unreviewed
CVE-2017-7367
was published
May 17, 2022
Integer overflow in drivers/char/diag/diag_dci.c in the Qualcomm components in Android before...
High
Unreviewed
CVE-2014-9883
was published
May 17, 2022
An integer underflow may occur due to lack of check when received data length from...
High
Unreviewed
CVE-2017-18278
was published
May 24, 2022
An issue was discovered in Suricata 4.1.x before 4.1.4. If the input of the function...
Critical
Unreviewed
CVE-2019-10053
was published
May 24, 2022
Improper input validation on input data which is used to locate and copy the additional IEs in...
Critical
Unreviewed
CVE-2018-11930
was published
May 24, 2022
Possible integer underflow can happen when calculating length of elementary stream info from...
Critical
Unreviewed
CVE-2019-2244
was published
May 24, 2022
Possible integer underflow can happen when calculating length of elementary stream map from...
Critical
Unreviewed
CVE-2019-2245
was published
May 24, 2022
An integer underflow issue exists in ntfs-3g 2017.3.23. A local attacker could potentially...
High
Unreviewed
CVE-2019-9755
was published
May 24, 2022
A vulnerability in the web server of Cisco Integrated Management Controller (IMC) could allow an...
Moderate
Unreviewed
CVE-2019-1628
was published
May 24, 2022
An Integer Underflow in MP4_EIA608_Convert() in modules/demux/mp4/mp4.c in VideoLAN VLC media...
High
Unreviewed
CVE-2019-13602
was published
May 24, 2022
An Integer underflow in VLC Media Player versions < 3.0.7 leads to an out-of-band read.
High
Unreviewed
CVE-2019-5459
was published
May 24, 2022
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing...
Critical
Unreviewed
CVE-2019-14192
was published
May 24, 2022
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing...
Critical
Unreviewed
CVE-2019-14199
was published
May 24, 2022
An issue was discovered in The Sleuth Kit (TSK) 4.6.6. There is an off-by-one overwrite due to an...
Critical
Unreviewed
CVE-2019-14532
was published
May 24, 2022
An issue was discovered in Schism Tracker through 20190722. There is an integer underflow via a...
High
Unreviewed
CVE-2019-14523
was published
May 24, 2022
In Das U-Boot versions 2016.11-rc1 through 2019.07-rc4, an underflow can cause memcpy() to...
High
Unreviewed
CVE-2019-13104
was published
May 24, 2022
A vulnerability in the Session Initiation Protocol (SIP) inspection module of Cisco Adaptive...
High
Unreviewed
CVE-2019-12678
was published
May 24, 2022
An exploitable integer underflow vulnerability exists in the CMP-parsing functionality of...
High
Unreviewed
CVE-2019-5099
was published
May 24, 2022
Buffer overflow can occur while processing non-standard NAN message from user space. in...
Moderate
Unreviewed
CVE-2019-2297
was published
May 24, 2022
A freed memory access vulnerability exists in the SVG Marker Element feature of Apple Safari's...
High
Unreviewed
CVE-2019-5144
was published
May 24, 2022
An exploitable denial-of-service vulnerability exists in ServiceAgent functionality of the Moxa...
Moderate
Unreviewed
CVE-2019-5148
was published
May 24, 2022
An exploitable signed comparison vulnerability exists in the ARMv7 memcpy() implementation of GNU...
High
Unreviewed
CVE-2020-6096
was published
May 24, 2022
The Treck TCP/IP stack before 6.0.1.66 has an IPv4 Integer Underflow.
Moderate
Unreviewed
CVE-2020-11909
was published
May 24, 2022
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly...
High
Unreviewed
CVE-2020-1400
was published
May 24, 2022
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core)....
Moderate
Unreviewed
CVE-2020-14699
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API