GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,090
Erlang
29
GitHub Actions
19
Go
1,915
Maven
5,000+
npm
3,646
NuGet
638
pip
3,262
Pub
10
RubyGems
870
Rust
821
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
5,185 advisories
Filter by severity
Heap buffer overflow in ANGLE in Google Chrome prior to 116.0.5845.96 allowed a remote attacker...
High
Unreviewed
CVE-2023-4353
was published
Aug 15, 2023
A vulnerability was found in Tenda O3 1.0.0.10(2478). It has been declared as critical. This...
High
Unreviewed
CVE-2024-7151
was published
Jul 27, 2024
A maliciously crafted DWF file, when parsed in dwfcore.dll through Autodesk Navisworks, can force...
High
Unreviewed
CVE-2024-7672
was published
Sep 30, 2024
A maliciously crafted DWFX file, when parsed in dwfcore.dll through Autodesk Navisworks, can...
High
Unreviewed
CVE-2024-7671
was published
Sep 30, 2024
In UMTS RLC driver, there is a possible out of bounds read due to a missing bounds check. This...
High
Unreviewed
CVE-2024-39432
was published
Sep 27, 2024
In UMTS RLC driver, there is a possible out of bounds write due to a missing bounds check. This...
High
Unreviewed
CVE-2024-39431
was published
Sep 27, 2024
In the Linux kernel, the following vulnerability has been resolved:
iio: Fix the sorting...
High
Unreviewed
CVE-2024-43825
was published
Aug 17, 2024
SAP CommonCryptoLib allows an unauthenticated attacker to craft a request, which when submitted...
High
Unreviewed
CVE-2023-40308
was published
Sep 15, 2023
Inappropriate implementation in V8 in Google Chrome prior to 129.0.6668.70 allowed a remote...
High
Unreviewed
CVE-2024-9121
was published
Sep 25, 2024
Parallels Desktop Toolgate Heap-based Buffer Overflow Local Privilege Escalation Vulnerability....
High
Unreviewed
CVE-2024-6154
was published
Jun 20, 2024
Kofax Power PDF PSD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability....
High
Unreviewed
CVE-2024-5301
was published
Jun 6, 2024
Out-of-bounds write vulnerability exists in KV STUDIO Ver.11.64 and earlier and KV REPLAY VIEWER...
High
Unreviewed
CVE-2024-29218
was published
Apr 15, 2024
A vulnerability exists in HCI IEC 60870-5-104 function included in certain versions of the RTU500...
High
Unreviewed
CVE-2022-4608
was published
Jul 26, 2023
Type Confusion in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to perform...
High
Unreviewed
CVE-2024-5830
was published
Jun 11, 2024
In the Linux kernel, the following vulnerability has been resolved:
ice: move...
High
Unreviewed
CVE-2024-46766
was published
Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: Fix out-of...
High
Unreviewed
CVE-2024-46725
was published
Sep 18, 2024
Memory safety bugs present in Firefox 116, Firefox ESR 115.1, and Thunderbird 115.1. Some of...
High
Unreviewed
CVE-2023-4585
was published
Sep 11, 2023
Actiontec WCB6200Q Multipart Boundary Stack-based Buffer Overflow Remote Code Execution...
High
Unreviewed
CVE-2024-6144
was published
Jun 19, 2024
Actiontec WCB6200Q uh_get_postdata_withupload Stack-based Buffer Overflow Remote Code Execution...
High
Unreviewed
CVE-2024-6146
was published
Jun 19, 2024
An issue was discovered in WibuKey64.sys in WIBU-SYSTEMS WibuKey before v6.70 and fixed in v.6.70...
High
Unreviewed
CVE-2024-45181
was published
Sep 12, 2024
Sudo before 1.9.5p2 has a Heap-based Buffer Overflow, allowing privilege escalation to root via ...
High
Unreviewed
CVE-2021-3156
was published
May 24, 2022
In ppmp_protect_mfcfw_buf of code/drm_fw.c, there is a possible memory corruption due to improper...
High
Unreviewed
CVE-2024-44094
was published
Sep 13, 2024
In ppmp_unprotect_buf of drm/code/drm_fw.c, there is a possible memory corruption due to a logic...
High
Unreviewed
CVE-2024-44093
was published
Sep 13, 2024
In ppmp_protect_mfcfw_buf of code/drm_fw.c, there is a possible corrupt memory due to a logic...
High
Unreviewed
CVE-2024-44095
was published
Sep 13, 2024
D-Link DI-8100 v16.07.26A1 has a stack overflow vulnerability in the dbsrv_asp function.
High
Unreviewed
CVE-2024-44375
was published
Sep 9, 2024
ProTip!
Advisories are also available from the
GraphQL API