Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,318
Erlang
31
GitHub Actions
21
Go
2,074
Maven
5,000+
npm
3,746
NuGet
674
pip
3,434
Pub
12
RubyGems
892
Rust
880
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

625 advisories

Loading
A buffer overflow vulnerability exists in the adm.cgi set_sys_adm() functionality of Wavlink... Critical Unreviewed
CVE-2024-39774 was published Jan 14, 2025
Multiple buffer overflow vulnerabilities exist in the internet.cgi set_qos() functionality of... Critical Unreviewed
CVE-2024-39768 was published Jan 14, 2025
Multiple buffer overflow vulnerabilities exist in the internet.cgi set_qos() functionality of... Critical Unreviewed
CVE-2024-39770 was published Jan 14, 2025
Multiple buffer overflow vulnerabilities exist in the qos.cgi qos_settings() functionality of... Critical Unreviewed
CVE-2024-39803 was published Jan 14, 2025
Multiple buffer overflow vulnerabilities exist in the qos.cgi qos_settings() functionality of... Critical Unreviewed
CVE-2024-39801 was published Jan 14, 2025
Multiple buffer overflow vulnerabilities exist in the internet.cgi set_qos() functionality of... Critical Unreviewed
CVE-2024-39769 was published Jan 14, 2025
Multiple buffer overflow vulnerabilities exist in the qos.cgi qos_settings() functionality of... Critical Unreviewed
CVE-2024-39802 was published Jan 14, 2025
A buffer overflow vulnerability exists in the qos.cgi qos_sta_settings() functionality of Wavlink... Critical Unreviewed
CVE-2024-39299 was published Jan 14, 2025
A buffer overflow vulnerability exists in the adm.cgi rep_as_bridge() functionality of Wavlink... Critical Unreviewed
CVE-2024-37184 was published Jan 14, 2025
A buffer overflow vulnerability exists in the login.cgi Goto_chidx() functionality of Wavlink... Critical Unreviewed
CVE-2024-36290 was published Jan 14, 2025
A buffer overflow vulnerability exists in the adm.cgi set_TR069() functionality of Wavlink AC3000... Critical Unreviewed
CVE-2024-37357 was published Jan 14, 2025
A buffer overflow vulnerability exists in the internet.cgi set_add_routing() functionality of... Critical Unreviewed
CVE-2024-39288 was published Jan 14, 2025
A buffer overflow vulnerability exists in the adm.cgi set_wzap() functionality of Wavlink AC3000... Critical Unreviewed
CVE-2024-39358 was published Jan 14, 2025
An arbitrary code execution vulnerability exists in the adm.cgi set_MeshAp() functionality of... Critical Unreviewed
CVE-2024-39370 was published Jan 14, 2025
A buffer overflow vulnerability exists in the usbip.cgi set_info() functionality of Wavlink... Critical Unreviewed
CVE-2024-36272 was published Jan 14, 2025
A buffer overflow vulnerability exists in the adm.cgi set_wzdgw4G() functionality of Wavlink... Critical Unreviewed
CVE-2024-39294 was published Jan 14, 2025
A buffer overflow vulnerability exists in the adm.cgi rep_as_router() functionality of Wavlink... Critical Unreviewed
CVE-2024-39756 was published Jan 14, 2025
Tenda ac9 v1.0 firmware v15.03.05.19 contains a stack overflow vulnerability in /goform... Critical Unreviewed
CVE-2025-22946 was published Jan 10, 2025
This issue is fixed in SCSSU-201801. A potential stack based buffer overflow existed in... Critical Unreviewed
CVE-2018-4301 was published Jan 8, 2025
A denial-of-service vulnerability exists in the Rockwell Automation Power Monitor 1000. The... Critical Unreviewed
CVE-2024-12373 was published Dec 18, 2024
Buffer Overflow vulnerability in radarorg radare2 v.5.8.8 allows an attacker to execute arbitrary... Critical Unreviewed
CVE-2024-29646 was published Dec 18, 2024
Buffer Overflow vulnerability in NEXTU FLATA AX1500 Router v.1.0.2 allows a remote attacker to... Critical Unreviewed
CVE-2024-29671 was published Dec 17, 2024
iptraf-ng 1.2.1 has a stack-based buffer overflow. Critical Unreviewed
CVE-2024-52949 was published Dec 17, 2024
Serviceware Processes 6.0 through 7.3 allows attackers without valid authentication to send a... Critical Unreviewed
CVE-2024-48956 was published Dec 9, 2024
The POSIX::2008 package before 0.24 for Perl has a potential _execve50c env buffer overflow. Critical Unreviewed
CVE-2024-55564 was published Dec 9, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database