Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,327 advisories

Loading
In vring_size of external/headers/include/virtio/virtio_ring.h, there is a possible out of bounds... High Unreviewed
CVE-2024-47024 was published Oct 25, 2024
Integer Overflow in fast_ping.c in SmartDNS Release46 allows remote attackers to cause a Denial... High Unreviewed
CVE-2024-42643 was published Oct 23, 2024
In the Linux kernel, the following vulnerability has been resolved: libbpf: Handle size overflow... High Unreviewed
CVE-2022-49030 was published Oct 21, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-43566 was published Oct 18, 2024
Adobe Framemaker versions 2020.6, 2022.4 and earlier are affected by an Integer Overflow or... High Unreviewed
CVE-2024-47424 was published Oct 9, 2024
Animate versions 23.0.7, 24.0.4 and earlier are affected by an Integer Overflow or Wraparound... High Unreviewed
CVE-2024-47416 was published Oct 9, 2024
An integer overflow vulnerability exists in the Compound Document Binary File format parser of... High Unreviewed
CVE-2024-36474 was published Oct 3, 2024
An integer overflow vulnerability exists in the Compound Document Binary File format parser of v1... High Unreviewed
CVE-2024-42415 was published Oct 3, 2024
Integer overflow in Skia in Google Chrome prior to 129.0.6668.70 allowed a remote attacker to... High Unreviewed
CVE-2024-9123 was published Sep 25, 2024
A Business Logic vulnerability in Shopkit 1.0 allows an attacker to add products with negative... High Unreviewed
CVE-2023-45854 was published Sep 16, 2024
Illustrator versions 28.6, 27.9.5 and earlier are affected by an Integer Overflow or Wraparound... High Unreviewed
CVE-2024-34121 was published Sep 13, 2024
Windows libarchive Remote Code Execution Vulnerability High Unreviewed
CVE-2024-43495 was published Sep 10, 2024
Memory corruption while calculating total metadata size when a very high reserved size is... High Unreviewed
CVE-2024-33035 was published Sep 2, 2024
An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c can have an integer... High Unreviewed
CVE-2024-45491 was published Aug 30, 2024
An issue was discovered in libexpat before 2.6.3. nextScaffoldPart in xmlparse.c can have an... High Unreviewed
CVE-2024-45492 was published Aug 30, 2024
In attributeBytesBase64 and attributeBytesHex of BinaryXmlSerializer.java, there is a possible... High Unreviewed
CVE-2024-34740 was published Aug 16, 2024
In _MMU_AllocLevel of mmu_common.c, there is a possible arbitrary code execution due to an... High Unreviewed
CVE-2024-31333 was published Aug 16, 2024
InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by an Integer Overflow or... High Unreviewed
CVE-2024-41851 was published Aug 14, 2024
InCopy versions 18.5.2, 19.4 and earlier are affected by an Integer Overflow or Wraparound... High Unreviewed
CVE-2024-41858 was published Aug 14, 2024
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38215 was published Aug 13, 2024
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38128 was published Aug 13, 2024
Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38144 was published Aug 13, 2024
Memory corruption while allocating memory in HGSL driver. High Unreviewed
CVE-2024-33022 was published Aug 5, 2024
Transient DOS while parsing the ML IE when a beacon with length field inside the common info of... High Unreviewed
CVE-2024-33024 was published Aug 5, 2024
In the Linux kernel, the following vulnerability has been resolved: cdrom: rearrange... High Unreviewed
CVE-2024-42136 was published Jul 30, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database