Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
49
GitHub Actions
49
Go
3,538
Maven
5,000+
npm
5,000+
NuGet
914
pip
4,790
Pub
13
RubyGems
1,037
Rust
1,232
Swift
53
Unreviewed advisories
All unreviewed
5,000+

69 advisories

Loading
Wasmtime has host data leakage with 64-bit tables and Winch Low
CVE-2026-34945 was published for wasmtime (Rust) Apr 9, 2026
shumbo Credited to shumbo and alexcrichton alexcrichton alexcrichton
Smart contract Marginal v1 performs unsafe downcast, allowing attackers to settle a large debt... Moderate Unreviewed
CVE-2026-4931 was published Apr 7, 2026
NVIDIA Triton Inference Server contains a vulnerability where an attacker could cause a server... High Unreviewed
CVE-2026-24174 was published Apr 7, 2026
jsrsasign: Negative Exponent Handling Leads to Signature Verification Bypass High
CVE-2026-4602 was published for jsrsasign (npm) Mar 23, 2026
Dell BIOS contains a Signed to Unsigned Conversion Error vulnerability. A local authenticated... Moderate Unreviewed
CVE-2023-28063 was published Feb 6, 2024
Windows Kernel Local Elevation of Privilege Vulnerability High Unreviewed
CVE-2020-17087 was published May 24, 2022
Soroban: Muxed address<->ScVal conversions may break after a conversion failure Low
GHSA-pm4j-7r4q-ccg8 was published for soroban-env-host (Rust) Mar 7, 2026
ImageMagick: Integer overflow or wraparound and incorrect conversion between numeric types in the internal SVG decoder High
CVE-2026-25989 was published for Magick.NET-Q16-AnyCPU (NuGet) Feb 24, 2026
petermalone Credited to petermalone
Windows MSHTML Platform Remote Code Execution Vulnerability High Unreviewed
CVE-2021-33742 was published May 24, 2022
CoreDNS: DNS Cache Pinning via etcd Lease ID Confusion High
CVE-2025-58063 was published for github.com/coredns/coredns (Go) Sep 9, 2025
thevilledev Credited to thevilledev
Incorrect conversion between numeric types in Microsoft Office Word allows an unauthorized... High Unreviewed
CVE-2025-53733 was published Aug 12, 2025
The packet_set_ring function in net/packet/af_packet.c in the Linux kernel through 4.10.6 does... High Unreviewed
CVE-2017-7308 was published May 14, 2022
The FANUC R-30iA and R-30iB series controllers are vulnerable to integer coercion errors, which... High Unreviewed
CVE-2021-32996 was published Jan 11, 2022
Integer signedness error in GD Graphics Library 2.1.1 (aka libgd or libgd2) allows remote... Critical Unreviewed
CVE-2016-3074 was published May 14, 2022
Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-49093 was published Dec 12, 2024
Incorrect code generation could have led to unexpected numeric conversions and potential... High Unreviewed
CVE-2024-1552 was published Feb 20, 2024
The Wallet for WooCommerce plugin for WordPress is vulnerable to incorrect conversion between... Moderate Unreviewed
CVE-2024-7747 was published Nov 28, 2024
Overflow/crash in `tf.range` Moderate
CVE-2021-41202 was published for tensorflow (pip) Nov 10, 2021
Heap OOB in nested `tf.map_fn` with `RaggedTensor`s High
CVE-2021-37679 was published for tensorflow (pip) Aug 25, 2021
Crash in NMS ops caused by integer conversion to unsigned Moderate
CVE-2021-37669 was published for tensorflow (pip) Aug 25, 2021
Crash caused by integer conversion to unsigned Moderate
CVE-2021-37661 was published for tensorflow (pip) Aug 25, 2021
Bad alloc in `StringNGrams` caused by integer conversion Moderate
CVE-2021-37646 was published for tensorflow (pip) Aug 25, 2021
Integer overflow due to conversion to unsigned Moderate
CVE-2021-37645 was published for tensorflow (pip) Aug 25, 2021
Segfault in tf.raw_ops.ImmutableConst Low
CVE-2021-29539 was published for tensorflow (pip) May 21, 2021
Heap buffer overflow in `UnsortedSegmentSum` in TensorFlow Low
CVE-2019-16778 was published for tensorflow (pip) Dec 16, 2019
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database