Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,714
Erlang
34
GitHub Actions
28
Go
2,300
Maven
5,000+
npm
3,942
NuGet
708
pip
3,711
Pub
12
RubyGems
920
Rust
960
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,390 advisories

Loading
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... High Unreviewed
CVE-2025-30712 was published Apr 15, 2025
An integer overflow was addressed with improved input validation. This issue is fixed in watchOS... High Unreviewed
CVE-2025-31221 was published May 13, 2025
Photoshop Desktop versions 26.5, 25.12.2 and earlier are affected by an Integer Overflow or... High Unreviewed
CVE-2025-30325 was published May 13, 2025
Bridge versions 15.0.3, 14.1.6 and earlier are affected by an Integer Overflow or Wraparound... High Unreviewed
CVE-2025-43547 was published May 13, 2025
Animate versions 24.0.8, 23.0.11 and earlier are affected by an Integer Overflow or Wraparound... High Unreviewed
CVE-2025-43556 was published May 13, 2025
An Integer Overflow vulnerability in WLInfoRailService component of Ivanti Avalanche before 6.4.3... High Unreviewed
CVE-2024-23531 was published Apr 19, 2024
Memory corruption Camera kernel when large number of devices are attached through userspace. High Unreviewed
CVE-2024-45575 was published May 6, 2025
In Expat (aka libexpat) before 2.4.5, there is an integer overflow in copyString. High Unreviewed
CVE-2022-25314 was published Feb 19, 2022
In doProlog in xmlparse.c in Expat (aka libexpat) before 2.4.3, an integer overflow exists for... High Unreviewed
CVE-2021-46143 was published Feb 10, 2022
In libpixman in Pixman before 0.42.2, there is an out-of-bounds write (aka heap-based buffer... High Unreviewed
CVE-2022-44638 was published Nov 3, 2022
Tesla Model 3 VCSEC Integer Overflow Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2025-2082 was published Apr 30, 2025
Integer overflow in USB in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to... High Unreviewed
CVE-2023-5849 was published Nov 1, 2023
An issue was discovered in the Linux kernel through 6.0.10. l2cap_config_req in net/bluetooth... High Unreviewed
CVE-2022-45934 was published Nov 27, 2022
An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with... High Unreviewed
CVE-2022-40303 was published Nov 23, 2022
A malicious client which is allowed to send very large amounts of traffic (billions of packets)... High Unreviewed
CVE-2018-5733 was published May 13, 2022
GIMP XWD File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2025-2760 was published Apr 23, 2025
In several functions that parse avrc response in avrc_pars_ct.cc and related files, there are... High Unreviewed
CVE-2022-20483 was published Dec 13, 2022
kernel/bpf/verifier.c in the Linux kernel 4.9.x through 4.9.71 does not check the relationship... High Unreviewed
CVE-2017-17863 was published May 14, 2022
The dump_relocs_in_section function in objdump.c in GNU Binutils 2.29.1 does not check for reloc... High Unreviewed
CVE-2017-17122 was published May 14, 2022
libXcursor before 1.1.15 has various integer overflows that could lead to heap buffer overflows... High Unreviewed
CVE-2017-16612 was published May 14, 2022
The pe_bfd_read_buildid function in peicode.h in the Binary File Descriptor (BFD) library (aka... High Unreviewed
CVE-2017-16832 was published May 14, 2022
coffgen.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU... High Unreviewed
CVE-2017-16831 was published May 14, 2022
The print_gnu_property_note function in readelf.c in GNU Binutils 2.29.1 does not have integer... High Unreviewed
CVE-2017-16830 was published May 14, 2022
The display_debug_frames function in dwarf.c in GNU Binutils 2.29.1 allows remote attackers to... High Unreviewed
CVE-2017-16828 was published May 14, 2022
The malloc function in the GNU C Library (aka glibc or libc6) 2.26 could return a memory block... High Unreviewed
CVE-2017-17426 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database