GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,097
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,657
NuGet
638
pip
3,264
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
235 advisories
Filter by severity
A vulnerability in the multicast traceroute version 2 (Mtrace2) feature of Cisco IOS XR Software...
High
Unreviewed
CVE-2024-20304
was published
Sep 11, 2024
ic-cdk has a memory leak when calling a canister method via `ic_cdk::call`
High
CVE-2024-7884
was published
for
ic_cdk
(Rust)
Sep 5, 2024
In the Linux kernel, the following vulnerability has been resolved:
idpf: fix memory leaks and...
High
Unreviewed
CVE-2024-44964
was published
Sep 4, 2024
In the Linux kernel, the following vulnerability has been resolved:
sctp: fix kernel-infoleak...
High
Unreviewed
CVE-2022-48855
was published
Jul 16, 2024
A Missing Release of Memory after Effective Lifetime vulnerability in the rtlogd process of...
High
Unreviewed
CVE-2024-39550
was published
Jul 11, 2024
A Missing Release of Memory after Effective Lifetime vulnerability in the routing process daemon ...
High
Unreviewed
CVE-2024-39549
was published
Jul 11, 2024
Memory leaks in code encrypting and verifying RSA payloads
High
CVE-2024-1394
was published
for
github.com/golang-fips/go
(Go)
Mar 20, 2024
Remote Denial of Service Vulnerability in Microsoft QUIC
High
GHSA-2x7m-gf85-3745
was published
for
Microsoft.Native.Quic.MsQuic.OpenSSL
(NuGet)
Mar 13, 2024
Transient DOS while processing IE fragments from server during DTLS handshake.
High
Unreviewed
CVE-2023-33084
was published
Mar 4, 2024
Transient DOS while processing multiple IKEV2 Informational Request to device from IPSEC server...
High
Unreviewed
CVE-2023-33086
was published
Mar 4, 2024
A memory leak issue discovered in parseSWF_FREECHARACTER in libming v0.4.8 allows attackers to...
High
Unreviewed
CVE-2024-24148
was published
Feb 28, 2024
Atheme 7.2.12 contains a memory leak vulnerability in /atheme/src/crypto-benchmark/main.c.
High
Unreviewed
CVE-2024-27508
was published
Feb 27, 2024
libLAS 1.8.1 contains a memory leak vulnerability in /libLAS/apps/ts2las.cpp.
High
Unreviewed
CVE-2024-27507
was published
Feb 27, 2024
Transient DOS in Multi-Mode Call Processor due to UE failure because of heap leakage.
High
Unreviewed
CVE-2023-33049
was published
Feb 6, 2024
mupdf v1.23.9 was discovered to contain a memory leak via the menuEntry variable in the...
High
Unreviewed
CVE-2024-24259
was published
Feb 5, 2024
mupdf v1.23.9 was discovered to contain a memory leak via the menuEntry variable in the...
High
Unreviewed
CVE-2024-24258
was published
Feb 5, 2024
gpac v2.2.1 was discovered to contain a memory leak via the gfio_blob variable in the...
High
Unreviewed
CVE-2024-24267
was published
Feb 5, 2024
gpac v2.2.1 was discovered to contain a memory leak via the dst_props variable in the...
High
Unreviewed
CVE-2024-24265
was published
Feb 5, 2024
openvswitch 2.17.8 was discovered to contain a memory leak via the function xmalloc__ in...
High
Unreviewed
CVE-2024-22563
was published
Jan 19, 2024
A Missing Release of Memory after Effective Lifetime vulnerability in the Routing Protocol...
High
Unreviewed
CVE-2024-21611
was published
Jan 12, 2024
An attacker with physical access to the Kantech Gen1 ioSmart card reader with firmware version...
High
Unreviewed
CVE-2023-0248
was published
Dec 14, 2023
A vulnerability has been identified in SIMATIC CP 1242-7 V2 (incl. SIPLUS variants) (All versions...
High
Unreviewed
CVE-2023-38380
was published
Dec 12, 2023
GPAC 2.3-DEV-rev617-g671976fcc-master is vulnerable to memory leaks in extract_attributes...
High
Unreviewed
CVE-2023-48090
was published
Nov 20, 2023
An issue was discovered in the captive portal in OpenNDS before version 10.1.3. It has multiple...
High
Unreviewed
CVE-2023-41102
was published
Nov 17, 2023
HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability
High
CVE-2023-5954
was published
for
github.com/hashicorp/vault
(Go)
Nov 9, 2023
ProTip!
Advisories are also available from the
GraphQL API