GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
1,335 advisories
Filter by severity
Integer Overflow or Wraparound vulnerability in Cesanta Mongoose Web Server v7.14 allows an...
High
Unreviewed
CVE-2024-42384
was published
Nov 18, 2024
A vulnerability in the Modbus preprocessor of the Snort detection engine could allow an...
High
Unreviewed
CVE-2022-20685
was published
Nov 15, 2024
A local user can bypass the OpenAFS PAG (Process Authentication Group)
throttling mechanism in...
High
Unreviewed
CVE-2024-10394
was published
Nov 14, 2024
Windows Registry Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-43641
was published
Nov 12, 2024
Windows Telephony Service Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43628
was published
Nov 12, 2024
Windows Telephony Service Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43635
was published
Nov 12, 2024
Windows NT OS Kernel Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-43623
was published
Nov 12, 2024
An issue was discovered in base/gsdevice.c in Artifex Ghostscript before 10.04.0. An integer...
High
Unreviewed
CVE-2024-46953
was published
Nov 11, 2024
In vring_size of external/headers/include/virtio/virtio_ring.h, there is a possible out of bounds...
High
Unreviewed
CVE-2024-47024
was published
Oct 25, 2024
Integer Overflow in fast_ping.c in SmartDNS Release46 allows remote attackers to cause a Denial...
High
Unreviewed
CVE-2024-42643
was published
Oct 23, 2024
In the Linux kernel, the following vulnerability has been resolved:
libbpf: Handle size overflow...
High
Unreviewed
CVE-2022-49030
was published
Oct 21, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43566
was published
Oct 18, 2024
Adobe Framemaker versions 2020.6, 2022.4 and earlier are affected by an Integer Overflow or...
High
Unreviewed
CVE-2024-47424
was published
Oct 9, 2024
Animate versions 23.0.7, 24.0.4 and earlier are affected by an Integer Overflow or Wraparound...
High
Unreviewed
CVE-2024-47416
was published
Oct 9, 2024
An integer overflow vulnerability exists in the Compound Document Binary File format parser of...
High
Unreviewed
CVE-2024-36474
was published
Oct 3, 2024
An integer overflow vulnerability exists in the Compound Document Binary File format parser of v1...
High
Unreviewed
CVE-2024-42415
was published
Oct 3, 2024
Integer overflow in Skia in Google Chrome prior to 129.0.6668.70 allowed a remote attacker to...
High
Unreviewed
CVE-2024-9123
was published
Sep 25, 2024
A Business Logic vulnerability in Shopkit 1.0 allows an attacker to add products with negative...
High
Unreviewed
CVE-2023-45854
was published
Sep 16, 2024
Illustrator versions 28.6, 27.9.5 and earlier are affected by an Integer Overflow or Wraparound...
High
Unreviewed
CVE-2024-34121
was published
Sep 13, 2024
Windows libarchive Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43495
was published
Sep 10, 2024
Memory corruption while calculating total metadata size when a very high reserved size is...
High
Unreviewed
CVE-2024-33035
was published
Sep 2, 2024
An issue was discovered in libexpat before 2.6.3. nextScaffoldPart in xmlparse.c can have an...
High
Unreviewed
CVE-2024-45492
was published
Aug 30, 2024
An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c can have an integer...
High
Unreviewed
CVE-2024-45491
was published
Aug 30, 2024
In attributeBytesBase64 and attributeBytesHex of BinaryXmlSerializer.java, there is a possible...
High
Unreviewed
CVE-2024-34740
was published
Aug 16, 2024
In _MMU_AllocLevel of mmu_common.c, there is a possible arbitrary code execution due to an...
High
Unreviewed
CVE-2024-31333
was published
Aug 16, 2024
ProTip!
Advisories are also available from the
GraphQL API