Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,308 advisories

Loading
Windows Libarchive Remote Code Execution Vulnerability High Unreviewed
CVE-2024-20696 was published Jan 9, 2024
AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause a heap memory... High Unreviewed
CVE-2023-37294 was published Jan 10, 2024
AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause a heap memory... High Unreviewed
CVE-2023-37295 was published Jan 10, 2024
AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause a heap memory... High Unreviewed
CVE-2023-37297 was published Jan 10, 2024
The vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS)... High Unreviewed
CVE-2023-48263 was published Jan 10, 2024
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2024-21337 was published Jan 12, 2024
A Heap-based Buffer Overflow vulnerability in the Routing Protocol Daemon (RPD) of Juniper... Moderate Unreviewed
CVE-2024-21596 was published Jan 12, 2024
A Heap-based Buffer Overflow vulnerability in the Network Services Daemon (NSD) of Juniper... Moderate Unreviewed
CVE-2024-21594 was published Jan 12, 2024
NVIDIA DGX A100 SBIOS contains a vulnerability where a user may cause a heap-based buffer... Moderate Unreviewed
CVE-2023-31031 was published Jan 12, 2024
A segment fault (SEGV) flaw was found in libtiff that could be triggered by passing a crafted... High Unreviewed
CVE-2023-52356 was published Jan 25, 2024
A buffer overflow was found in Shim in the 32-bit system. The overflow happens due to an addition... Moderate Unreviewed
CVE-2023-40548 was published Jan 29, 2024
An off-by-one heap-based buffer overflow was found in the __vsyslog_internal function of the... High Unreviewed
CVE-2023-6779 was published Jan 31, 2024
A heap-based buffer overflow was found in the __vsyslog_internal function of the glibc library.... High Unreviewed
CVE-2023-6246 was published Jan 31, 2024
Due to a failure in validating the number of scanline samples of a OpenEXR file containing deep... Critical Unreviewed
CVE-2023-5841 was published Feb 1, 2024
A flaw was found in the GNU coreutils "split" program. A heap overflow with user-controlled data... Moderate Unreviewed
CVE-2024-0684 was published Feb 6, 2024
A flaw was found in Indent. This issue may allow a local user to use a specially-crafted file to... Moderate Unreviewed
CVE-2024-0911 was published Feb 6, 2024
Heap buffer overflow in Skia in Google Chrome prior to 121.0.6167.160 allowed a remote attacker... Critical Unreviewed
CVE-2024-1283 was published Feb 7, 2024
An issue in the imlib_free_image_and_decache function of imlib2 v1.9.1 allows attackers to cause... High Unreviewed
CVE-2024-25448 was published Feb 9, 2024
A heap overflow flaw was found in 389-ds-base. This issue leads to a denial of service when... Moderate Unreviewed
CVE-2024-1062 was published Feb 12, 2024
A vulnerability has been identified in Tecnomatix Plant Simulation V2201 (All versions < V2201... High Unreviewed
CVE-2024-23796 was published Feb 13, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21361 was published Feb 13, 2024
Windows Kernel Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-21345 was published Feb 13, 2024
Windows Kernel Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2024-21341 was published Feb 13, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21365 was published Feb 13, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21369 was published Feb 13, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database