GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
8,375 advisories
Filter by severity
A buffer overflow vulnerability exists in Delta Electronics WPLSoft. An anonymous attacker can...
High
Unreviewed
CVE-2023-5130
was published
Jan 19, 2024
In some circumstances, JIT compiled code could have dereferenced a wild pointer value. This could...
High
Unreviewed
CVE-2024-0744
was published
Jan 23, 2024
Heap-based buffer overflow vulnerability in Resource Hacker, developed by Angus Johnson,...
High
Unreviewed
CVE-2024-1112
was published
Jan 31, 2024
A denial-of-service vulnerability exists in specific Rockwell Automation ControlLogix ang...
High
Unreviewed
CVE-2024-21916
was published
Jan 31, 2024
A buffer overflow vulnerability has been found in XAMPP affecting version 8.2.4 and earlier. An...
High
Unreviewed
CVE-2024-0338
was published
Feb 2, 2024
Memory corruption while validating the TID to Link Mapping action request frame, when a station...
High
Unreviewed
CVE-2023-43534
was published
Feb 6, 2024
A vulnerability has been identified in Simcenter Femap (All versions < V2401.0000). The affected...
High
Unreviewed
CVE-2024-24921
was published
Feb 13, 2024
In the Linux kernel, the following vulnerability has been resolved:
smb: client: fix potential...
High
Unreviewed
CVE-2023-52434
was published
Feb 20, 2024
In the Linux kernel, the following vulnerability has been resolved:
ksmbd: fix slub overflow in...
High
Unreviewed
CVE-2023-52440
was published
Feb 21, 2024
In the Linux kernel, the following vulnerability has been resolved:
ksmbd: fix out of bounds in...
High
Unreviewed
CVE-2023-52441
was published
Feb 21, 2024
Buffer Overflow vulnerability in Wireshark team Wireshark before v.4.2.0 allows a remote attacker...
High
Unreviewed
CVE-2024-24476
was published
Feb 21, 2024
A maliciously crafted STP file in ASMKERN228A.dll or ASMDATAX228A.dll when parsed through...
High
Unreviewed
CVE-2024-23131
was published
Feb 22, 2024
A maliciously crafted MODEL file in libodxdll.dll when parsed through Autodesk AutoCAD could lead...
High
Unreviewed
CVE-2024-23128
was published
Feb 22, 2024
A maliciously crafted MODEL 3DM, STP or SLDASM files in opennurbs.dll when parsed through...
High
Unreviewed
CVE-2024-23129
was published
Feb 22, 2024
A maliciously crafted SLDASM, or SLDPRT files in ODXSW_DLL.dll when parsed through Autodesk...
High
Unreviewed
CVE-2024-23130
was published
Feb 22, 2024
A maliciously crafted STP file in ASMDATAX228A.dll when parsed through Autodesk AutoCAD could...
High
Unreviewed
CVE-2024-23133
was published
Feb 22, 2024
A maliciously crafted STP file in atf_dwg_consumer.dll when parsed through Autodesk AutoCAD could...
High
Unreviewed
CVE-2024-23132
was published
Feb 22, 2024
In the Linux kernel, the following vulnerability has been resolved:
f2fs: fix to avoid dirent...
High
Unreviewed
CVE-2023-52444
was published
Feb 22, 2024
In the Linux kernel, the following vulnerability has been resolved:
bpf: Reject variable offset...
High
Unreviewed
CVE-2024-26589
was published
Feb 22, 2024
In the Linux kernel, the following vulnerability has been resolved:
LoongArch: BPF: Prevent out...
High
Unreviewed
CVE-2024-26588
was published
Feb 22, 2024
In the Linux kernel, the following vulnerability has been resolved:
EDAC/thunderx: Fix possible...
High
Unreviewed
CVE-2023-52464
was published
Feb 23, 2024
In the Linux kernel, the following vulnerability has been resolved:
pwm: Fix out-of-bounds...
High
Unreviewed
CVE-2024-26599
was published
Feb 23, 2024
IBM Connect:Express for UNIX 1.5.0 is vulnerable to a buffer overflow that could allow a remote...
High
Unreviewed
CVE-2023-32331
was published
Mar 4, 2024
The vulnerability described by CVE-2023-0972 has been additionally discovered in Silicon Labs Z...
High
Unreviewed
CVE-2023-51395
was published
Mar 7, 2024
In ppmp_unprotect_buf of drm_fw.c, there is a possible compromise of protected memory due to a...
High
Unreviewed
CVE-2024-25986
was published
Mar 11, 2024
ProTip!
Advisories are also available from the
GraphQL API