GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,634
NuGet
638
pip
3,250
Pub
10
RubyGems
867
Rust
819
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
538 advisories
Filter by severity
Heap buffer overflow in PDF in Google Chrome prior to 124.0.6367.78 allowed a remote attacker to...
High
Unreviewed
CVE-2024-7018
was published
Sep 24, 2024
Inappropriate implementation in V8 in Google Chrome prior to 129.0.6668.58 allowed a remote...
High
Unreviewed
CVE-2024-8905
was published
Sep 17, 2024
Heap-based buffer overflow vulnerability in Assimp versions prior to 5.4.3 allows a local...
High
Unreviewed
CVE-2024-45679
was published
Sep 18, 2024
Photoshop Desktop versions 24.7.4, 25.11 and earlier are affected by a Heap-based Buffer Overflow...
High
Unreviewed
CVE-2024-43756
was published
Sep 13, 2024
After Effects versions 23.6.6, 24.5 and earlier are affected by a Heap-based Buffer Overflow...
High
Unreviewed
CVE-2024-39380
was published
Sep 13, 2024
Heap buffer overflow in Skia in Google Chrome prior to 128.0.6613.137 allowed a remote attacker...
High
Unreviewed
CVE-2024-8636
was published
Sep 11, 2024
Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-37335
was published
Sep 10, 2024
Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-26191
was published
Sep 10, 2024
Windows TCP/IP Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-38045
was published
Sep 10, 2024
Windows TCP/IP Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-21416
was published
Sep 10, 2024
Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38237
was published
Sep 10, 2024
Kernel Streaming Service Driver Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38242
was published
Sep 10, 2024
Kernel Streaming Service Driver Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38238
was published
Sep 10, 2024
Heap-based buffer overflow vulnerability in the SonicOS IPSec VPN allows an unauthenticated...
High
Unreviewed
CVE-2024-40764
was published
Jul 18, 2024
Buffer-Overflow vulnerability at conv.c:68 of stsaz phiola v2.0-rc22 allows a remote attacker to...
High
Unreviewed
CVE-2024-33428
was published
May 1, 2024
Buffer overflow in some Zoom Workplace Apps and Rooms Clients may allow an authenticated user to...
High
Unreviewed
CVE-2024-39825
was published
Aug 14, 2024
texlive-bin commit c515e was discovered to contain heap buffer overflow via the function...
High
Unreviewed
CVE-2024-25262
was published
Feb 29, 2024
Heap-based Buffer Overflow, Memory Corruption, Out-Of-Bounds Read, Out-Of-Bounds Write, Stack...
High
Unreviewed
CVE-2024-1848
was published
Mar 22, 2024
Heap-based Buffer Overflow, Memory Corruption, Out-Of-Bounds Read, Out-Of-Bounds Write, Stack...
High
Unreviewed
CVE-2024-1847
was published
Feb 28, 2024
Use-After-Free, Out-of-bounds Write and Heap-based Buffer Overflow vulnerabilities exist in the...
High
Unreviewed
CVE-2023-2763
was published
Jul 12, 2023
Heap buffer overflow in Skia in Google Chrome prior to 128.0.6613.113 allowed a remote attacker...
High
Unreviewed
CVE-2024-8198
was published
Aug 29, 2024
Heap buffer overflow in Skia in Google Chrome prior to 128.0.6613.113 allowed a remote attacker...
High
Unreviewed
CVE-2024-8193
was published
Aug 29, 2024
Buffer Overflow vulnerability in open source exiftags v.1.01 allows a local attacker to execute...
High
Unreviewed
CVE-2024-42851
was published
Aug 27, 2024
oFono SimToolKit Heap-based Buffer Overflow Privilege Escalation Vulnerability. This...
High
Unreviewed
CVE-2024-7546
was published
Aug 6, 2024
Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to...
High
Unreviewed
CVE-2024-39883
was published
Jul 10, 2024
ProTip!
Advisories are also available from the
GraphQL API