Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,986
Maven
5,000+
npm
3,703
NuGet
661
pip
3,329
Pub
11
RubyGems
884
Rust
843
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

613 advisories

Loading
Premiere Pro versions 24.1, 23.6.2 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-20745 was published Mar 18, 2024
A heap-based buffer overflow in Clmg before 3.3.3 can occur via a crafted file to cimg_library:... High Unreviewed
CVE-2024-26540 was published Mar 15, 2024
Windows Kernel Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-26178 was published Mar 12, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-26166 was published Mar 12, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-26161 was published Mar 12, 2024
Microsoft ODBC Driver Remote Code Execution Vulnerability High Unreviewed
CVE-2024-26159 was published Mar 12, 2024
Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-21330 was published Mar 12, 2024
In TBD of TBD, there is a possible out of bounds write due to a heap buffer overflow. This could... High Unreviewed
CVE-2024-27209 was published Mar 11, 2024
Heap-based Buffer Overflow vulnerability in gpac version 2.3-DEV-rev588-g7edc40fee-master, allows... High Unreviewed
CVE-2023-46426 was published Mar 9, 2024
A CWE-122 “Heap-based Buffer Overflow” vulnerability in the “logger_generic” function of the ... High Unreviewed
CVE-2023-45591 was published Mar 5, 2024
Dell Digital Delivery, versions prior to 5.0.86.0, contain a Buffer Overflow vulnerability. A... High Unreviewed
CVE-2024-0156 was published Mar 4, 2024
MicroDicom DICOM Viewer versions 2023.3 (Build 9342) and prior are affected by a heap-based... High Unreviewed
CVE-2024-22100 was published Mar 1, 2024
texlive-bin commit c515e was discovered to contain heap buffer overflow via the function... High Unreviewed
CVE-2024-25262 was published Feb 29, 2024
Heap-based Buffer Overflow, Memory Corruption, Out-Of-Bounds Read, Out-Of-Bounds Write, Stack... High Unreviewed
CVE-2024-1847 was published Feb 28, 2024
A flaw was found in X.Org server. In the XISendDeviceHierarchyEvent function, it is possible to... High Unreviewed
CVE-2024-21885 was published Feb 28, 2024
A heap buffer overflow flaw was found in the DisableDevice function in the X.Org server. This... High Unreviewed
CVE-2024-21886 was published Feb 28, 2024
A heap-based buffer overflow vulnerability exists in the GGUF library info->ne functionality... High Unreviewed
CVE-2024-21802 was published Feb 26, 2024
A maliciously crafted MODEL, SLDPRT or SLDASM file when parsed VCRUNTIME140.dll through Autodesk... High Unreviewed
CVE-2024-23127 was published Feb 22, 2024
The issue was addressed with improved bounds checks. This issue is fixed in watchOS 10.1, macOS... High Unreviewed
CVE-2023-42848 was published Feb 21, 2024
In convertYUV420Planar16ToY410 of ColorConverter.cpp, there is a possible out of bounds write due... High Unreviewed
CVE-2024-0018 was published Feb 16, 2024
In multiple functions of ashmem-dev.cpp, there is a possible missing seal due to a heap buffer... High Unreviewed
CVE-2024-0033 was published Feb 16, 2024
In setParameter of MtpPacket.cpp, there is a possible out of bounds read due to a heap buffer... High Unreviewed
CVE-2024-0040 was published Feb 16, 2024
Audition versions 24.0.3, 23.6.2 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-20739 was published Feb 15, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21370 was published Feb 13, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21361 was published Feb 13, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database