Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,090
Erlang
29
GitHub Actions
19
Go
1,915
Maven
5,000+
npm
3,646
NuGet
638
pip
3,262
Pub
10
RubyGems
870
Rust
821
Swift
35
Unreviewed advisories
All unreviewed
5,000+

716 advisories

Loading
Heap buffer overflow in ANGLE in Google Chrome prior to 116.0.5845.96 allowed a remote attacker... High Unreviewed
CVE-2023-4353 was published Aug 15, 2023
A heap overflow flaw was found in 389-ds-base. This issue leads to a denial of service when... Moderate Unreviewed
CVE-2024-1062 was published Feb 12, 2024
A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, can force... High Unreviewed
CVE-2024-7673 was published Sep 30, 2024
A maliciously crafted DWF file, when parsed in dwfcore.dll through Autodesk Navisworks, can force... High Unreviewed
CVE-2024-7674 was published Sep 30, 2024
Giflib Project v5.2.2 is vulnerable to a heap buffer overflow via gif2rgb. Moderate Unreviewed
CVE-2024-45993 was published Sep 30, 2024
There is a buffer overflow vulnerability in ZTE MF296R. Due to insufficient validation of the SMS... Moderate Unreviewed
CVE-2022-39068 was published Sep 18, 2024
Heap-based Buffer Overflow in sqlite-vec Critical
CVE-2024-46488 was published for sqlite-vec (RubyGems) Sep 25, 2024
Assimp v5.4.3 is vulnerable to Buffer Overflow via the MD5Importer::LoadMD5MeshFile function. Moderate Unreviewed
CVE-2024-46632 was published Sep 26, 2024
A heap-based buffer overflow vulnerability was found in the libopensc OpenPGP driver. A crafted... Low Unreviewed
CVE-2024-8443 was published Sep 10, 2024
VLC media player 3.0.20 and earlier is vulnerable to denial of service through an integer... High Unreviewed
CVE-2024-46461 was published Sep 25, 2024
A vulnerability in Cisco Unified Threat Defense (UTD) Snort Intrusion Prevention System (IPS)... Moderate Unreviewed
CVE-2024-20508 was published Sep 25, 2024
Heap-based Buffer Overflow in MicroPython Moderate
CVE-2024-8946 was published for micropython-copy (pip) Sep 17, 2024
Parallels Desktop Toolgate Heap-based Buffer Overflow Local Privilege Escalation Vulnerability.... High Unreviewed
CVE-2024-6154 was published Jun 20, 2024
Kofax Power PDF PSD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability.... High Unreviewed
CVE-2024-5301 was published Jun 6, 2024
Heap buffer overflow in PDF in Google Chrome prior to 124.0.6367.78 allowed a remote attacker to... High Unreviewed
CVE-2024-7018 was published Sep 24, 2024
heap-buffer-overflow in MicroPython Moderate
CVE-2024-8948 was published for micropython-copy (pip) Sep 17, 2024
Buffer overflow in some Zoom Workplace Apps and SDK’s may allow an authenticated user to conduct... Moderate Unreviewed
CVE-2024-27243 was published May 15, 2024
Inappropriate implementation in V8 in Google Chrome prior to 129.0.6668.58 allowed a remote... High Unreviewed
CVE-2024-8905 was published Sep 17, 2024
Heap-based buffer overflow vulnerability in Assimp versions prior to 5.4.3 allows a local... High Unreviewed
CVE-2024-45679 was published Sep 18, 2024
A heap-based Buffer Overflow flaw was discovered in Samba. It could allow a remote, authenticated... Moderate Unreviewed
CVE-2023-5568 was published Oct 25, 2023
The vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC... Critical Unreviewed
CVE-2024-38812 was published Sep 17, 2024
Photoshop Desktop versions 24.7.4, 25.11 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-43756 was published Sep 13, 2024
After Effects versions 23.6.6, 24.5 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-39380 was published Sep 13, 2024
Heap buffer overflow in Skia in Google Chrome prior to 128.0.6613.137 allowed a remote attacker... High Unreviewed
CVE-2024-8636 was published Sep 11, 2024
Heap-based Buffer Overflow vulnerability in Samsung Open Source Escargot JavaScript engine allows... Moderate Unreviewed
CVE-2024-32671 was published Jul 29, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database