Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,339
Erlang
31
GitHub Actions
22
Go
2,099
Maven
5,000+
npm
3,763
NuGet
678
pip
3,448
Pub
12
RubyGems
892
Rust
883
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

642 advisories

Loading
A buffer overflow vulnerability exists in the adm.cgi set_wzdgw4G() functionality of Wavlink... Critical Unreviewed
CVE-2024-39294 was published Jan 14, 2025
A buffer overflow vulnerability exists in the adm.cgi rep_as_router() functionality of Wavlink... Critical Unreviewed
CVE-2024-39756 was published Jan 14, 2025
A buffer overflow vulnerability exists in the login.cgi Goto_chidx() functionality of Wavlink... Critical Unreviewed
CVE-2024-36290 was published Jan 14, 2025
A buffer overflow vulnerability exists in the adm.cgi set_TR069() functionality of Wavlink AC3000... Critical Unreviewed
CVE-2024-37357 was published Jan 14, 2025
A buffer overflow vulnerability exists in the usbip.cgi set_info() functionality of Wavlink... Critical Unreviewed
CVE-2024-36272 was published Jan 14, 2025
A buffer overflow vulnerability exists in the internet.cgi set_add_routing() functionality of... Critical Unreviewed
CVE-2024-39288 was published Jan 14, 2025
A buffer overflow vulnerability exists in the adm.cgi rep_as_bridge() functionality of Wavlink... Critical Unreviewed
CVE-2024-37184 was published Jan 14, 2025
An arbitrary code execution vulnerability exists in the adm.cgi set_MeshAp() functionality of... Critical Unreviewed
CVE-2024-39370 was published Jan 14, 2025
Tenda ac9 v1.0 firmware v15.03.05.19 contains a stack overflow vulnerability in /goform... Critical Unreviewed
CVE-2025-22946 was published Jan 10, 2025
This issue is fixed in SCSSU-201801. A potential stack based buffer overflow existed in... Critical Unreviewed
CVE-2018-4301 was published Jan 8, 2025
A denial-of-service vulnerability exists in the Rockwell Automation Power Monitor 1000. The... Critical Unreviewed
CVE-2024-12373 was published Dec 18, 2024
Buffer Overflow vulnerability in radarorg radare2 v.5.8.8 allows an attacker to execute arbitrary... Critical Unreviewed
CVE-2024-29646 was published Dec 18, 2024
Buffer Overflow vulnerability in NEXTU FLATA AX1500 Router v.1.0.2 allows a remote attacker to... Critical Unreviewed
CVE-2024-29671 was published Dec 17, 2024
iptraf-ng 1.2.1 has a stack-based buffer overflow. Critical Unreviewed
CVE-2024-52949 was published Dec 17, 2024
Serviceware Processes 6.0 through 7.3 allows attackers without valid authentication to send a... Critical Unreviewed
CVE-2024-48956 was published Dec 9, 2024
The POSIX::2008 package before 0.24 for Perl has a potential _execve50c env buffer overflow. Critical Unreviewed
CVE-2024-55564 was published Dec 9, 2024
Open Robotics Robotic Operating System 2 (ROS2) and Nav2 humble versions were discovered to... Critical Unreviewed
CVE-2024-37863 was published Dec 6, 2024
Open Robotics Robotic Operating System 2 (ROS2) and Nav2 humble versions were discovered to... Critical Unreviewed
CVE-2024-37861 was published Dec 6, 2024
FFmpeg n6.1.1 is Integer Overflow. The vulnerability exists in the parse_options function of... Critical Unreviewed
CVE-2024-35366 was published Nov 29, 2024
Buffer Overflow vulnerability in SunBK201 umicat through v.0.3.2 and fixed in v.0.3.3 allows an... Critical Unreviewed
CVE-2024-48406 was published Nov 29, 2024
An issue was discovered in MBed OS 6.16.0. When parsing hci reports, the hci parsing software... Critical Unreviewed
CVE-2024-48984 was published Nov 20, 2024
Tenda AC6 v2.0 v15.03.06.50 was discovered to contain a buffer overflow in the function ... Critical Unreviewed
CVE-2024-52714 was published Nov 19, 2024
D-LINK DI-8003 v16.07.26A1 was discovered to contain a buffer overflow via the ip parameter in... Critical Unreviewed
CVE-2024-52759 was published Nov 19, 2024
miniupnp before 4c90b87, as used in Bitcoin Core before 0.12 and other products, lacks checks for... Critical Unreviewed
CVE-2015-20111 was published Nov 18, 2024
Multiple Buffer overflows in the MMS Client in MZ Automation LibIEC61850 before commit... Critical Unreviewed
CVE-2024-45970 was published Nov 15, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database