GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
57 advisories
Filter by severity
Potential DoS with NumberFilter conversion to integer values.
High
CVE-2020-15225
was published
for
django-filter
(pip)
Sep 28, 2020
DHCP Server Service Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-38044
was published
Jul 9, 2024
Apache Xalan Java XSLT library integer truncation issue when processing malicious XSLT stylesheets
High
CVE-2022-34169
was published
for
xalan:xalan
(Maven)
Jul 20, 2022
A vulnerability has been identified in SIPLUS TIM 1531 IRC (6AG1543-1MX00-7XE0) (All versions <...
Moderate
Unreviewed
CVE-2022-40225
was published
Jun 11, 2024
vyper's range(start, start + N) reverts for negative numbers
Moderate
CVE-2024-32481
was published
for
vyper
(pip)
Apr 25, 2024
Microsoft ODBC Driver Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-26162
was published
Mar 12, 2024
Windows Kernel Local Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2020-17087
was published
May 24, 2022
Dell BIOS contains a Signed to Unsigned Conversion Error vulnerability. A local authenticated...
Moderate
Unreviewed
CVE-2023-28063
was published
Feb 6, 2024
Oxenstored 32->31 bit integer truncation issues Integers in Ocaml are 63 or 31 bits of signed...
Moderate
Unreviewed
CVE-2022-42324
was published
Nov 1, 2022
Sign extension error in the ReadDIBImage function in ImageMagick before 6.3.5-9 allows context...
Moderate
Unreviewed
CVE-2007-4988
was published
May 1, 2022
The Embedded OpenType (EOT) Font Engine (T2EMBED.DLL) in Microsoft Windows 2000 SP4, XP SP2 and...
High
Unreviewed
CVE-2009-0231
was published
May 2, 2022
Integer overflow in the rtl_allocateMemory function in sal/rtl/source/alloc_global.c in the...
High
Unreviewed
CVE-2008-3282
was published
May 1, 2022
Integer signedness error in the Networking component in Apple Mac OS X 10.4 through 10.4.10...
High
Unreviewed
CVE-2007-4268
was published
May 1, 2022
Windows MSHTML Platform Remote Code Execution Vulnerability
High
Unreviewed
CVE-2021-33742
was published
May 24, 2022
Okio Signed to Unsigned Conversion Error vulnerability
Moderate
CVE-2023-3635
was published
for
com.squareup.okio:okio
(Maven)
Jul 12, 2023
A vulnerability in the hardware-based SSL/TLS cryptography functionality of Cisco Adaptive...
High
Unreviewed
CVE-2023-20006
was published
Jun 28, 2023
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where sign...
High
Unreviewed
CVE-2023-0185
was published
Apr 1, 2023
An integer conversion vulnerability exists in the SORBAx64.dll RecvPacket functionality of...
Critical
Unreviewed
CVE-2022-43663
was published
Mar 20, 2023
An integer coercion error was found in the openvswitch kernel module. Given a sufficiently large...
High
Unreviewed
CVE-2022-2639
was published
Sep 2, 2022
The FANUC R-30iA and R-30iB series controllers are vulnerable to integer coercion errors, which...
High
Unreviewed
CVE-2021-32996
was published
Jan 11, 2022
An integer conversion error in Hermes bytecode generation, prior to commit...
Critical
Unreviewed
CVE-2022-40138
was published
Oct 11, 2022
Structured reply is a feature of the newstyle NBD protocol allowing the server to send a reply in...
Critical
Unreviewed
CVE-2019-14842
was published
May 24, 2022
PowerDNS Authoritative daemon , all versions pdns 4.1.x before pdns 4.1.10, exiting when...
Moderate
Unreviewed
CVE-2019-10203
was published
May 24, 2022
In libming 0.4.8, there is an integer signedness error vulnerability (left shift of a negative...
Moderate
Unreviewed
CVE-2018-5251
was published
May 13, 2022
gd_gif_in.c in the GD Graphics Library (aka libgd), as used in PHP before 5.6.33, 7.0.x before 7...
Moderate
Unreviewed
CVE-2018-5711
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API