GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,090
Erlang
29
GitHub Actions
19
Go
1,915
Maven
5,000+
npm
3,646
NuGet
638
pip
3,262
Pub
10
RubyGems
870
Rust
821
Swift
35
Unreviewed advisories
All unreviewed
5,000+
716 advisories
Filter by severity
A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, can force...
High
Unreviewed
CVE-2024-7673
was published
Sep 30, 2024
A maliciously crafted DWF file, when parsed in dwfcore.dll through Autodesk Navisworks, can force...
High
Unreviewed
CVE-2024-7674
was published
Sep 30, 2024
Giflib Project v5.2.2 is vulnerable to a heap buffer overflow via gif2rgb.
Moderate
Unreviewed
CVE-2024-45993
was published
Sep 30, 2024
Assimp v5.4.3 is vulnerable to Buffer Overflow via the MD5Importer::LoadMD5MeshFile function.
Moderate
Unreviewed
CVE-2024-46632
was published
Sep 26, 2024
A vulnerability in Cisco Unified Threat Defense (UTD) Snort Intrusion Prevention System (IPS)...
Moderate
Unreviewed
CVE-2024-20508
was published
Sep 25, 2024
Heap-based Buffer Overflow in sqlite-vec
Critical
CVE-2024-46488
was published
for
sqlite-vec
(RubyGems)
Sep 25, 2024
VLC media player 3.0.20 and earlier is vulnerable to denial of service through an integer...
High
Unreviewed
CVE-2024-46461
was published
Sep 25, 2024
Heap buffer overflow in PDF in Google Chrome prior to 124.0.6367.78 allowed a remote attacker to...
High
Unreviewed
CVE-2024-7018
was published
Sep 24, 2024
Heap-based buffer overflow vulnerability in Assimp versions prior to 5.4.3 allows a local...
High
Unreviewed
CVE-2024-45679
was published
Sep 18, 2024
There is a buffer overflow vulnerability in ZTE MF296R. Due to insufficient validation of the SMS...
Moderate
Unreviewed
CVE-2022-39068
was published
Sep 18, 2024
Heap-based Buffer Overflow in MicroPython
Moderate
CVE-2024-8946
was published
for
micropython-copy
(pip)
Sep 17, 2024
Inappropriate implementation in V8 in Google Chrome prior to 129.0.6668.58 allowed a remote...
High
Unreviewed
CVE-2024-8905
was published
Sep 17, 2024
heap-buffer-overflow in MicroPython
Moderate
CVE-2024-8948
was published
for
micropython-copy
(pip)
Sep 17, 2024
The vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC...
Critical
Unreviewed
CVE-2024-38812
was published
Sep 17, 2024
Photoshop Desktop versions 24.7.4, 25.11 and earlier are affected by a Heap-based Buffer Overflow...
High
Unreviewed
CVE-2024-43756
was published
Sep 13, 2024
After Effects versions 23.6.6, 24.5 and earlier are affected by a Heap-based Buffer Overflow...
High
Unreviewed
CVE-2024-39380
was published
Sep 13, 2024
Heap buffer overflow in Skia in Google Chrome prior to 128.0.6613.137 allowed a remote attacker...
High
Unreviewed
CVE-2024-8636
was published
Sep 11, 2024
Kernel Streaming Service Driver Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38242
was published
Sep 10, 2024
Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38237
was published
Sep 10, 2024
Kernel Streaming Service Driver Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38238
was published
Sep 10, 2024
Windows TCP/IP Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-38045
was published
Sep 10, 2024
Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-37335
was published
Sep 10, 2024
Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-26191
was published
Sep 10, 2024
Windows TCP/IP Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-21416
was published
Sep 10, 2024
A heap-based buffer overflow vulnerability was found in the libopensc OpenPGP driver. A crafted...
Low
Unreviewed
CVE-2024-8443
was published
Sep 10, 2024
ProTip!
Advisories are also available from the
GraphQL API