GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,614
Composer 4,714
Erlang 34
GitHub Actions 28
Go 2,301
Maven 5,576
npm 3,942
NuGet 711
pip 3,711
Pub 12
RubyGems 920
Rust 960
Swift 38

Unreviewed advisories

All unreviewed 256,936

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

298 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Sqlite 3.49.0 is susceptible to integer overflow through the concat function. Critical Unreviewed

CVE-2025-29087 was published Apr 7, 2025

Mercedes-Benz head-unit NTG6 contains functions to import or export profile settings over USB.... Critical Unreviewed

CVE-2023-34399 was published Feb 14, 2025

FastCGI fcgi2 (aka fcgi) 2.x through 2.4.4 has an integer overflow (and resultant heap-based... Critical Unreviewed

CVE-2025-23016 was published Jan 10, 2025

An Integer-based buffer overflow vulnerability in the SonicOS via IPSec allows a remote attacker... Critical Unreviewed

CVE-2024-40765 was published Jan 9, 2025

Integer overflow vulnerability exists in SimplCommerce at commit... Critical Unreviewed

CVE-2024-50944 was published Dec 27, 2024

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability Critical Unreviewed

CVE-2024-49112 was published Dec 12, 2024

FFmpeg n6.1.1 is Integer Overflow. The vulnerability exists in the parse_options function of... Critical Unreviewed

CVE-2024-35366 was published Nov 29, 2024

nodemcu before v3.0.0-release_20240225 was discovered to contain an integer overflow via the... Critical Unreviewed

CVE-2024-36671 was published Nov 29, 2024

WeeChat before 4.4.2 has an integer overflow and resultant buffer overflow at core/core-string.c... Critical Unreviewed

CVE-2024-46613 was published Nov 10, 2024

Xlight FTP Server <3.9.4.3 has an integer overflow vulnerability in the packet parsing logic of... Critical Unreviewed

CVE-2024-46483 was published Oct 23, 2024

A vulnerability has been identified in Automation License Manager V5 (All versions), Automation... Critical Unreviewed

CVE-2024-44087 was published Sep 10, 2024

A malicious value of size in a structure of packed libnv can cause an integer overflow, leading... Critical Unreviewed

CVE-2024-45287 was published Sep 5, 2024

An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length... Critical Unreviewed

CVE-2024-45490 was published Aug 30, 2024

An issue in newlib v.4.3.0 allows an attacker to execute arbitrary code via the time unit scaling... Critical Unreviewed

CVE-2024-30949 was published Aug 20, 2024

In the vrrp_ipsets_handler handler (fglobal_parser.c) of keepalived through 2.3.1, an integer... Critical Unreviewed

CVE-2024-41184 was published Jul 18, 2024

tap-windows6 driver version 9.26 and earlier does not properly check the size data of incomming... Critical Unreviewed

CVE-2024-1305 was published Jul 8, 2024

In wl_notify_rx_mgmt_frame of wl_cfg80211.c, there is a possible out of bounds write due to an... Critical Unreviewed

CVE-2024-32913 was published Jun 13, 2024

Integer overflow in libaom internal function img_alloc_helper can lead to heap buffer overflow.... Critical Unreviewed

CVE-2024-5171 was published Jun 5, 2024

A heap-based buffer overflow vulnerability exists in the comment functionality of stb _vorbis.c... Critical Unreviewed

CVE-2023-47212 was published May 1, 2024

Integer Overflow or Wraparound vulnerability in Mitsubishi Electric Corporation MELSEC-Q Series... Critical Unreviewed

CVE-2024-1916 was published Mar 15, 2024

Integer Overflow or Wraparound vulnerability in Mitsubishi Electric Corporation MELSEC-Q Series... Critical Unreviewed

CVE-2024-0803 was published Mar 15, 2024

Integer Overflow or Wraparound vulnerability in Mitsubishi Electric Corporation MELSEC-Q Series... Critical Unreviewed

CVE-2024-1917 was published Mar 15, 2024

An integer overflow vulnerability exists in the sopen_FAMOS_read functionality of The Biosig... Critical Unreviewed

CVE-2024-21812 was published Feb 20, 2024

Integer overflow vulnerability in FFmpeg before n6.1, allows remote attackers to execute... Critical Unreviewed

CVE-2024-22860 was published Jan 27, 2024

Integer overflow vulnerability in FFmpeg before n6.1, allows remote attackers to execute... Critical Unreviewed

CVE-2024-22862 was published Jan 27, 2024

Previous 1 2 3 4 5 … 11 12 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

298 advisories