Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

740 advisories

Loading
A heap buffer overflow could be triggered by sending a specific packet to TCP port 7700. Critical Unreviewed
CVE-2023-29125 was published Nov 5, 2024
User controlled parameters related to SMTP notifications are not correctly validated. This can... Moderate Unreviewed
CVE-2021-31986 was published May 24, 2022
Ariel Harush and Roy Hodir from OTORIO have found a flaw in the AXIS A1001 when communicating... High Unreviewed
CVE-2023-21406 was published Jul 25, 2023
A maliciously crafted SLDPRT file when parsed in odxsw_dll.dll through Autodesk AutoCAD can force... High Unreviewed
CVE-2024-8587 was published Oct 29, 2024
A maliciously crafted MODEL file, when parsed in atf_asm_interface.dll through Autodesk... High Unreviewed
CVE-2024-23155 was published Jun 25, 2024
A flaw was found in the X.org server. Due to improperly tracked allocation size in... High Unreviewed
CVE-2024-9632 was published Oct 30, 2024
A maliciously crafted 3DM file when parsed in AcTranslators.exe through Autodesk AutoCAD can... High Unreviewed
CVE-2024-8591 was published Oct 30, 2024
A maliciously crafted MODEL file when parsed in libodxdll.dll through Autodesk AutoCAD can force... High Unreviewed
CVE-2024-8594 was published Oct 30, 2024
In Eclipse Mosquitto, from version 1.3.2 through 2.0.18, if a malicious broker sends a crafted... High Unreviewed
CVE-2024-10525 was published Oct 30, 2024
HDF5 Library through 1.14.3 contains a heap-based buffer overflow in... Critical Unreviewed
CVE-2024-32615 was published May 14, 2024
TinyWeb 1.94 and below allows unauthenticated remote attackers to cause a denial of service ... High Unreviewed
CVE-2024-34199 was published May 14, 2024
A vulnerability was discovered in Samsung Mobile Processor, Wearable Processor, and Modems with... High Unreviewed
CVE-2023-50806 was published Jul 9, 2024
Heap buffer overflow in ANGLE in Google Chrome prior to 125.0.6422.76 allowed a remote attacker... High Unreviewed
CVE-2024-5159 was published May 22, 2024
In multiple locations, there is a possible out of bounds write due to a heap buffer overflow.... Moderate Unreviewed
CVE-2024-23709 was published May 7, 2024
Substance3D - Stager versions 3.0.3 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-45139 was published Oct 9, 2024
Substance3D - Stager versions 3.0.3 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-45143 was published Oct 9, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2024-43587 was published Oct 18, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-43578 was published Oct 18, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-43579 was published Oct 18, 2024
Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to... High Unreviewed
CVE-2024-47964 was published Oct 10, 2024
Heap buffer overflow in Layout in Google Chrome prior to 127.0.6533.99 allowed a remote attacker... High Unreviewed
CVE-2024-7534 was published Aug 6, 2024
Heap buffer overflow in Skia in Google Chrome prior to 128.0.6613.113 allowed a remote attacker... High Unreviewed
CVE-2024-8198 was published Aug 29, 2024
Animate versions 23.0.7, 24.0.4 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-47417 was published Oct 9, 2024
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-43593 was published Oct 8, 2024
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-43592 was published Oct 8, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database