Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,986
Maven
5,000+
npm
3,703
NuGet
661
pip
3,329
Pub
11
RubyGems
884
Rust
843
Swift
36
Unreviewed advisories
All unreviewed
5,000+

800 advisories

Loading
Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38237 was published Sep 10, 2024
Kernel Streaming Service Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38242 was published Sep 10, 2024
Kernel Streaming Service Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38238 was published Sep 10, 2024
Heap buffer overflow in Skia in Google Chrome prior to 128.0.6613.137 allowed a remote attacker... High Unreviewed
CVE-2024-8636 was published Sep 11, 2024
After Effects versions 23.6.6, 24.5 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-39380 was published Sep 13, 2024
Photoshop Desktop versions 24.7.4, 25.11 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-43756 was published Sep 13, 2024
The vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC... Critical Unreviewed
CVE-2024-38812 was published Sep 17, 2024
heap-buffer-overflow in MicroPython Moderate
CVE-2024-8948 was published for micropython-copy (pip) Sep 17, 2024
Heap-based Buffer Overflow in MicroPython Moderate
CVE-2024-8946 was published for micropython-copy (pip) Sep 17, 2024
Inappropriate implementation in V8 in Google Chrome prior to 129.0.6668.58 allowed a remote... High Unreviewed
CVE-2024-8905 was published Sep 17, 2024
There is a buffer overflow vulnerability in ZTE MF296R. Due to insufficient validation of the SMS... Moderate Unreviewed
CVE-2022-39068 was published Sep 18, 2024
Heap-based buffer overflow vulnerability in Assimp versions prior to 5.4.3 allows a local... High Unreviewed
CVE-2024-45679 was published Sep 18, 2024
Heap buffer overflow in PDF in Google Chrome prior to 124.0.6367.78 allowed a remote attacker to... High Unreviewed
CVE-2024-7018 was published Sep 24, 2024
VLC media player 3.0.20 and earlier is vulnerable to denial of service through an integer... High Unreviewed
CVE-2024-46461 was published Sep 25, 2024
Heap-based Buffer Overflow in sqlite-vec High
CVE-2024-46488 was published for sqlite-vec (RubyGems) Sep 25, 2024
A vulnerability in Cisco Unified Threat Defense (UTD) Snort Intrusion Prevention System (IPS)... Moderate Unreviewed
CVE-2024-20508 was published Sep 25, 2024
Assimp v5.4.3 is vulnerable to Buffer Overflow via the MD5Importer::LoadMD5MeshFile function. Moderate Unreviewed
CVE-2024-46632 was published Sep 26, 2024
Giflib Project v5.2.2 is vulnerable to a heap buffer overflow via gif2rgb. Moderate Unreviewed
CVE-2024-45993 was published Sep 30, 2024
A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, can force... High Unreviewed
CVE-2024-7673 was published Sep 30, 2024
A maliciously crafted DWF file, when parsed in dwfcore.dll through Autodesk Navisworks, can force... High Unreviewed
CVE-2024-7674 was published Sep 30, 2024
A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G,... Moderate Unreviewed
CVE-2024-20516 was published Oct 2, 2024
A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G,... Moderate Unreviewed
CVE-2024-20517 was published Oct 2, 2024
A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G,... Moderate Unreviewed
CVE-2024-20522 was published Oct 2, 2024
Bandisoft BandiView 7.05 is vulnerable to Buffer Overflow via sub_0x410d1d. The vulnerability... Moderate Unreviewed
CVE-2024-45872 was published Oct 3, 2024
A vulnerability has been identified in Simcenter Nastran 2306 (All versions), Simcenter Nastran... High Unreviewed
CVE-2024-41981 was published Oct 8, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database