Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,014
Maven
5,000+
npm
3,721
NuGet
662
pip
3,393
Pub
11
RubyGems
890
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+

236 advisories

Loading
A stack-based buffer overflow vulnerability exists in the confsrv confctl_set_app_language... Critical Unreviewed
CVE-2022-23103 was published Aug 6, 2022
A stack-based buffer overflow vulnerability exists in the confsrv set_port_fwd_rule functionality... Critical Unreviewed
CVE-2022-23399 was published Aug 6, 2022
A stack-based buffer overflow vulnerability exists in the confsrv set_mf_rule functionality of... Critical Unreviewed
CVE-2022-23919 was published Aug 6, 2022
A stack-based buffer overflow vulnerability exists in the confsrv set_mf_rule functionality of... Critical Unreviewed
CVE-2022-23918 was published Aug 6, 2022
A stack-based buffer overflow vulnerability exists in the confsrv addTimeGroup functionality of... Critical Unreviewed
CVE-2022-25996 was published Aug 6, 2022
A stack-based buffer overflow vulnerability exists in the confsrv ucloud_set_node_location... Critical Unreviewed
CVE-2022-26009 was published Aug 6, 2022
A vulnerability in the web-based management interface of Cisco Small Business RV110W, RV130,... Critical Unreviewed
CVE-2022-20825 was published Jun 16, 2022
Advantech WebAccess versions 9.02 and prior are vulnerable to a stack-based buffer overflow,... Critical Unreviewed
CVE-2021-38389 was published May 24, 2022
FATEK Automation Communication Server Versions 1.13 and prior lacks proper validation of user... Critical Unreviewed
CVE-2021-38432 was published May 24, 2022
A stack-based buffer overflow vulnerability in Advantech WebAccess Versions 9.02 and prior caused... Critical Unreviewed
CVE-2021-38408 was published May 24, 2022
Delta Industrial Automation COMMGR Versions 1.12 and prior are vulnerable to a stack-based buffer... Critical Unreviewed
CVE-2021-27480 was published May 24, 2022
A vulnerability has been identified in SCALANCE X200-4P IRT (All versions < 5.5.1), SCALANCE X201... Critical Unreviewed
CVE-2021-25669 was published May 24, 2022
In Eclipse OpenJ9 up to version 0.23, there is potential for a stack-based buffer overflow when... Critical Unreviewed
CVE-2020-27221 was published May 24, 2022
The affected product is vulnerable to three stack-based buffer overflows, which may allow an... Critical Unreviewed
CVE-2020-25189 was published May 24, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... Critical Unreviewed
CVE-2020-17407 was published May 24, 2022
Advantech WebAccess before 8.4.3 allows unauthenticated remote attackers to execute arbitrary... Critical Unreviewed
CVE-2019-3951 was published May 24, 2022
In all versions of libyang before 1.0-r5, a stack-based buffer overflow was discovered in the way... Critical Unreviewed
CVE-2019-19333 was published May 24, 2022
In all versions of libyang before 1.0-r5, a stack-based buffer overflow was discovered in the way... Critical Unreviewed
CVE-2019-19334 was published May 24, 2022
TurboVNC server code contains stack buffer overflow vulnerability in commit prior to... Critical Unreviewed
CVE-2019-15683 was published May 24, 2022
When receiving calls using WhatsApp for iOS, a missing size check when parsing a sender-provided... Critical Unreviewed
CVE-2018-20655 was published May 24, 2022
When receiving calls using WhatsApp for Android, a missing size check when parsing a sender... Critical Unreviewed
CVE-2018-6349 was published May 24, 2022
When receiving calls using WhatsApp on Android, a stack allocation failed to properly account for... Critical Unreviewed
CVE-2018-6339 was published May 24, 2022
Annke N48PBB (Network Video Recorder) products of version 3.4.106 build 200422 and prior are... Critical Unreviewed
CVE-2021-32941 was published May 24, 2022
A malicious attacker could exploit the interface of the Fieldcomm Group HART-IP (release 1.0.0.0)... Critical Unreviewed
CVE-2020-16209 was published May 20, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of... Critical Unreviewed
CVE-2022-24049 was published Feb 19, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database