Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,334 advisories

Loading
A vulnerability in the Modbus preprocessor of the Snort detection engine could allow an... High Unreviewed
CVE-2022-20685 was published Nov 15, 2024
A local user can bypass the OpenAFS PAG (Process Authentication Group) throttling mechanism in... High Unreviewed
CVE-2024-10394 was published Nov 14, 2024
Windows Registry Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-43641 was published Nov 12, 2024
Windows NT OS Kernel Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-43623 was published Nov 12, 2024
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2024-43628 was published Nov 12, 2024
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2024-43635 was published Nov 12, 2024
An issue was discovered in base/gsdevice.c in Artifex Ghostscript before 10.04.0. An integer... High Unreviewed
CVE-2024-46953 was published Nov 11, 2024
In vring_size of external/headers/include/virtio/virtio_ring.h, there is a possible out of bounds... High Unreviewed
CVE-2024-47024 was published Oct 25, 2024
Integer Overflow in fast_ping.c in SmartDNS Release46 allows remote attackers to cause a Denial... High Unreviewed
CVE-2024-42643 was published Oct 23, 2024
In the Linux kernel, the following vulnerability has been resolved: libbpf: Handle size overflow... High Unreviewed
CVE-2022-49030 was published Oct 21, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-43566 was published Oct 18, 2024
Adobe Framemaker versions 2020.6, 2022.4 and earlier are affected by an Integer Overflow or... High Unreviewed
CVE-2024-47424 was published Oct 9, 2024
Animate versions 23.0.7, 24.0.4 and earlier are affected by an Integer Overflow or Wraparound... High Unreviewed
CVE-2024-47416 was published Oct 9, 2024
An integer overflow vulnerability exists in the Compound Document Binary File format parser of... High Unreviewed
CVE-2024-36474 was published Oct 3, 2024
An integer overflow vulnerability exists in the Compound Document Binary File format parser of v1... High Unreviewed
CVE-2024-42415 was published Oct 3, 2024
Integer overflow in Skia in Google Chrome prior to 129.0.6668.70 allowed a remote attacker to... High Unreviewed
CVE-2024-9123 was published Sep 25, 2024
A Business Logic vulnerability in Shopkit 1.0 allows an attacker to add products with negative... High Unreviewed
CVE-2023-45854 was published Sep 16, 2024
Illustrator versions 28.6, 27.9.5 and earlier are affected by an Integer Overflow or Wraparound... High Unreviewed
CVE-2024-34121 was published Sep 13, 2024
Windows libarchive Remote Code Execution Vulnerability High Unreviewed
CVE-2024-43495 was published Sep 10, 2024
Memory corruption while calculating total metadata size when a very high reserved size is... High Unreviewed
CVE-2024-33035 was published Sep 2, 2024
An issue was discovered in libexpat before 2.6.3. nextScaffoldPart in xmlparse.c can have an... High Unreviewed
CVE-2024-45492 was published Aug 30, 2024
An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c can have an integer... High Unreviewed
CVE-2024-45491 was published Aug 30, 2024
In attributeBytesBase64 and attributeBytesHex of BinaryXmlSerializer.java, there is a possible... High Unreviewed
CVE-2024-34740 was published Aug 16, 2024
In _MMU_AllocLevel of mmu_common.c, there is a possible arbitrary code execution due to an... High Unreviewed
CVE-2024-31333 was published Aug 16, 2024
InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by an Integer Overflow or... High Unreviewed
CVE-2024-41851 was published Aug 14, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database