Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

53 advisories

Loading
Untrusted pointer dereference in UEFI firmware for some Intel(R) reference processors may allow a... High Unreviewed
CVE-2023-42772 was published Sep 16, 2024
Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability High Unreviewed
CVE-2024-37340 was published Sep 10, 2024
Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability High Unreviewed
CVE-2024-37339 was published Sep 10, 2024
Memory corruption while passing untrusted/corrupted pointers from DSP to EVA. High Unreviewed
CVE-2024-33038 was published Sep 2, 2024
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38187 was published Aug 13, 2024
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38185 was published Aug 13, 2024
There is an elevation of privilege vulnerability in server and client components of Absolute... High Unreviewed
CVE-2024-40872 was published Jul 25, 2024
Windows Fax Service Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38104 was published Jul 9, 2024
Secure Boot Security Feature Bypass Vulnerability High Unreviewed
CVE-2024-37969 was published Jul 9, 2024
NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability where a user can cause... High Unreviewed
CVE-2024-0091 was published Jun 14, 2024
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-35250 was published Jun 11, 2024
Microsoft Streaming Service Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-30090 was published Jun 11, 2024
A memory corruption vulnerability in HddPassword in Insyde InsydeH2O kernel 5.2 before 05.29.09,... High Unreviewed
CVE-2024-25079 was published May 15, 2024
A memory corruption vulnerability in StorageSecurityCommandDxe in Insyde InsydeH2O before kernel... High Unreviewed
CVE-2024-25078 was published May 15, 2024
A memory corruption vulnerability in SdHost and SdMmcDevice in Insyde InsydeH2O kernel 5.2 before... High Unreviewed
CVE-2024-27353 was published May 15, 2024
PDF-XChange Editor JavaScript String Untrusted Pointer Dereference Remote Code Execution... High Unreviewed
CVE-2023-40472 was published May 3, 2024
PDF-XChange Editor App Untrusted Pointer Dereference Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-40471 was published May 3, 2024
PDF-XChange Editor OXPS File Parsing Untrusted Pointer Dereference Remote Code Execution... High Unreviewed
CVE-2023-39501 was published May 3, 2024
Ashlar-Vellum Cobalt Untrusted Pointer Dereference Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-34311 was published May 3, 2024
Ashlar-Vellum Cobalt XE File Parsing Untrusted Pointer Dereference Remote Code Execution... High Unreviewed
CVE-2023-34300 was published May 3, 2024
Ashlar-Vellum Cobalt CO File Parsing Untrusted Pointer Dereference Remote Code Execution... High Unreviewed
CVE-2023-34301 was published May 3, 2024
Ashlar-Vellum Cobalt Untrusted Pointer Dereference Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-34309 was published May 3, 2024
Ashlar-Vellum Cobalt XE File Parsing Untrusted Pointer Dereference Remote Code Execution... High Unreviewed
CVE-2023-35711 was published May 3, 2024
PDF-XChange Editor EMF File Parsing Untrusted Pointer Dereference Remote Code Execution... High Unreviewed
CVE-2023-27342 was published May 3, 2024
Microsoft Virtual Machine Bus (VMBus) Denial of Service Vulnerability High Unreviewed
CVE-2024-26254 was published Apr 9, 2024
ProTip! Advisories are also available from the GraphQL API