Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
656
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

26 advisories

Loading
In an out-of-memory scenario an allocation could fail but free would have been called on the... High Unreviewed
CVE-2024-6603 was published Jul 9, 2024
Memory corruption when the payload received from firmware is not as per the expected protocol size. High Unreviewed
CVE-2024-21475 was published May 6, 2024
An out-of-bounds stack write flaw was found in unixODBC on 64-bit architectures where the caller... High Unreviewed
CVE-2024-1013 was published Mar 18, 2024
Memory corruption in Audio while processing RT proxy port register driver. High Unreviewed
CVE-2023-33066 was published Mar 4, 2024
Memory corruption while validating the TID to Link Mapping action request frame, when a station... High Unreviewed
CVE-2023-43534 was published Feb 6, 2024
Memory corruption when malformed message payload is received from firmware. High Unreviewed
CVE-2023-43516 was published Feb 6, 2024
Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS... High Unreviewed
CVE-2023-43513 was published Feb 6, 2024
The session index variable in PCM host voice audio driver initialized before PCM open, accessed... High Unreviewed
CVE-2023-33110 was published Jan 2, 2024
Memory corruption in Audio during playback with speaker protection. High Unreviewed
CVE-2023-33033 was published Jan 2, 2024
Memory corruption while submitting a large list of sync points in an AUX command to the... High Unreviewed
CVE-2023-33106 was published Dec 5, 2023
Memory corruption in Audio while running invalid audio recording from ADSP. High Unreviewed
CVE-2023-33079 was published Dec 5, 2023
A vulnerability in the Multicast Leaf Recycle Elimination (mLRE) feature of Cisco IOS XE Software... High Unreviewed
CVE-2023-20187 was published Sep 27, 2023
Memory corruption in WLAN HAL while passing command parameters through WMI interfaces. High Unreviewed
CVE-2023-28564 was published Sep 5, 2023
The cam_get_device_priv function does not check the type of handle being returned (device/session... High Unreviewed
CVE-2023-28575 was published Aug 8, 2023
Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory Corruption. High Unreviewed
CVE-2023-22387 was published Jul 4, 2023
An out-of-bounds read vulnerability exists in the PORT command parameter extraction functionality... High Unreviewed
CVE-2022-46378 was published May 10, 2023
An out-of-bounds read vulnerability exists in the PORT command parameter extraction functionality... High Unreviewed
CVE-2022-46377 was published May 10, 2023
Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM High Unreviewed
CVE-2022-25694 was published Mar 10, 2023
Memory corruption in modem due to use of out of range pointer offset while processing qmi msg High Unreviewed
CVE-2022-25709 was published Mar 10, 2023
Memory corruption in Audio due to use of out-of-range pointer offset while Initiating a voice... High Unreviewed
CVE-2022-33246 was published Feb 12, 2023
Multiple CODESYS Products are prone to a out-of bounds read or write access. A low privileged... High Unreviewed
CVE-2022-32142 was published Jun 25, 2022
A crafted request with invalid offsets may cause an out-of-bounds read or write access in CODESYS... High Unreviewed
CVE-2021-34595 was published May 24, 2022
A vulnerability has been identified in Nucleus NET (All versions < V5.2), Nucleus RTOS (versions... High Unreviewed
CVE-2020-27009 was published May 24, 2022
Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2.4440. High Unreviewed
CVE-2022-0729 was published Feb 24, 2022
Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2.4418. High Unreviewed
CVE-2022-0685 was published Feb 21, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database