Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,308 advisories

Loading
Microsoft Excel Remote Code Execution Vulnerability High Unreviewed
CVE-2023-33133 was published Jun 14, 2023
Microsoft SharePoint Denial of Service Vulnerability Moderate Unreviewed
CVE-2023-33129 was published Jun 14, 2023
.NET Remote Code Execution Vulnerability High
CVE-2023-24897 was published for Microsoft.NetCore.App.Runtime.win-arm (NuGet) Jun 14, 2023
Heap-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.2.2. Moderate Unreviewed
CVE-2023-3291 was published Jun 16, 2023
A heap-based buffer overflow issue was discovered in ImageMagick's ReadTIM2ImageData() function... Moderate Unreviewed
CVE-2023-34474 was published Jun 16, 2023
An access violation vulnerability exists in the GraphPlanar::Write functionality of Diagon v1.0... High Unreviewed
CVE-2023-31194 was published Jul 5, 2023
A heap-based buffer overflow vulnerability exists in the Sequence::DrawText functionality of... High Unreviewed
CVE-2023-27390 was published Jul 5, 2023
Use After Free (UAF) vulnerability in the Vdecoderservice service. Successful exploitation of... Critical Unreviewed
CVE-2022-48512 was published Jul 6, 2023
A bug affects the Linux kernel’s ksmbd NTLMv2 authentication and is known to crash the OS... High Unreviewed
CVE-2023-0210 was published Jul 6, 2023
A user may be tricked into opening a malicious FBX file that may exploit a heap buffer overflow... High Unreviewed
CVE-2023-27911 was published Jul 6, 2023
A heap buffer overflow vulnerability was found in sox, in the startread function at sox/src/hcom... High Unreviewed
CVE-2023-34318 was published Jul 10, 2023
A heap buffer overflow vulnerability was found in sox, in the lsx_readbuf function at sox/src... High Unreviewed
CVE-2023-34432 was published Jul 10, 2023
A vulnerability has been identified in Tecnomatix Plant Simulation V2201 (All versions < V2201... High Unreviewed
CVE-2023-37246 was published Jul 11, 2023
A vulnerability has been identified in Tecnomatix Plant Simulation V2201 (All versions < V2201... High Unreviewed
CVE-2023-37247 was published Jul 11, 2023
Use-After-Free, Out-of-bounds Write and Heap-based Buffer Overflow vulnerabilities exist in the... High Unreviewed
CVE-2023-2763 was published Jul 12, 2023
Experion server may experience a DoS due to a heap overflow which could occur when handling a... High Unreviewed
CVE-2023-24474 was published Jul 13, 2023
All versions of GE Digital CIMPLICITY that are not adhering to SDG guidance and accepting... Critical Unreviewed
CVE-2023-3463 was published Jul 19, 2023
Multiple out-of-bounds write vulnerabilities exist in the ORCA format nAtoms functionality of... High Unreviewed
CVE-2022-46289 was published Jul 21, 2023
Multiple out-of-bounds write vulnerabilities exist in the ORCA format nAtoms functionality of... High Unreviewed
CVE-2022-46290 was published Jul 21, 2023
Ariel Harush and Roy Hodir from OTORIO have found a flaw in the AXIS A1001 when communicating... High Unreviewed
CVE-2023-21406 was published Jul 25, 2023
Heap buffer overflow in Blink in Google Chrome prior to 101.0.4951.41 allowed a remote attacker... Critical Unreviewed
CVE-2022-4920 was published Jul 29, 2023
Under some circumstances, this weakness allows a user who has access to run the “ps” utility on a... Low Unreviewed
CVE-2023-4016 was published Aug 2, 2023
A flaw was found in the QEMU virtual crypto device while handling data encryption/decryption... Moderate Unreviewed
CVE-2023-3180 was published Aug 3, 2023
Buffer overflow in Zoom Clients before 5.14.5 may allow an unauthenticated user to enable a... High Unreviewed
CVE-2023-36532 was published Aug 8, 2023
Due to a failure in validating the length of a provided MQTT_CMD_PUBLISH parsed message with a... High Unreviewed
CVE-2023-2905 was published Aug 9, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database