Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,262
NuGet
760
pip
4,058
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,307 advisories

Loading
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30095 was published Jun 11, 2024
Windows Link Layer Topology Discovery Protocol Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30074 was published Jun 11, 2024
Windows Link Layer Topology Discovery Protocol Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30075 was published Jun 11, 2024
Win32k Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-30091 was published Jun 11, 2024
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30094 was published Jun 11, 2024
Windows OLE Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30077 was published Jun 11, 2024
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-30085 was published Jun 11, 2024
libiec61850 v1.5 was discovered to contain a heap overflow via the BerEncoder_encodeLength... High Unreviewed
CVE-2024-36702 was published Jun 11, 2024
Heap buffer overflow in Tab Groups in Google Chrome prior to 126.0.6478.54 allowed a remote... High Unreviewed
CVE-2024-5835 was published Jun 11, 2024
Elasticsearch StackOverflow vulnerability Moderate
CVE-2024-37280 was published for org.elasticsearch:elasticsearch (Maven) Jun 13, 2024
vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC... Critical Unreviewed
CVE-2024-37080 was published Jun 18, 2024
Heap-based buffer overflow vulnerability in the SonicOS SSL-VPN allows an authenticated remote... Moderate Unreviewed
CVE-2024-29013 was published Jun 20, 2024
Parallels Desktop Toolgate Heap-based Buffer Overflow Local Privilege Escalation Vulnerability.... High Unreviewed
CVE-2024-6154 was published Jun 20, 2024
[A maliciously crafted 3DM file, when parsed in opennurbs.dll through Autodesk applications, can... High Unreviewed
CVE-2024-37001 was published Jun 25, 2024
A maliciously crafted SLDPRT file, when parsed in ODXSW_DLL.dll through Autodesk applications,... Moderate Unreviewed
CVE-2024-23154 was published Jun 25, 2024
A maliciously crafted MODEL file, when parsed in atf_asm_interface.dll through Autodesk... High Unreviewed
CVE-2024-23155 was published Jun 25, 2024
Heap Buffer Overflow vulnerability in Libde265 v1.0.15 allows attackers to crash the application... Moderate Unreviewed
CVE-2024-38949 was published Jun 26, 2024
Heap Buffer Overflow vulnerability in Libde265 v1.0.15 allows attackers to crash the application... Moderate Unreviewed
CVE-2024-38950 was published Jun 26, 2024
Heap Buffer Overflow vulnerability in zziplib v0.13.77 allows attackers to cause a denial of... Moderate Unreviewed
CVE-2024-39133 was published Jun 27, 2024
FFmpeg 7.0 contains a heap-buffer-overflow at libavfilter/vf_tiltandshift.c:189:5 in copy_column. High Unreviewed
CVE-2024-32229 was published Jul 1, 2024
The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 (for 7zz) contains a heap-based buffer... High Unreviewed
CVE-2023-52168 was published Jul 3, 2024
Artifex Ghostscript before 10.0.3.0 has a heap-based pointer disclosure (observable in a... Low Unreviewed
CVE-2024-29508 was published Jul 3, 2024
The bson_string_append function in MongoDB C Driver may be vulnerable to a buffer overflow where... Moderate Unreviewed
CVE-2024-6383 was published Jul 4, 2024
A heap-based buffer overflow vulnerability exists in the configuration file mib_init_value_array... High Unreviewed
CVE-2024-21778 was published Jul 8, 2024
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21317 was published Jul 9, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database