Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,307 advisories

Loading
A maliciously crafted MODEL file when parsed in libodxdll.dll through Autodesk AutoCAD can force... High Unreviewed
CVE-2024-8594 was published Oct 30, 2024
A flaw was found in the X.org server. Due to improperly tracked allocation size in... High Unreviewed
CVE-2024-9632 was published Oct 30, 2024
In Eclipse Mosquitto, from version 1.3.2 through 2.0.18, if a malicious broker sends a crafted... High Unreviewed
CVE-2024-10525 was published Oct 30, 2024
A heap buffer overflow could be triggered by sending a specific packet to TCP port 7700. Critical Unreviewed
CVE-2023-29125 was published Nov 5, 2024
LightGBM Remote Code Execution Vulnerability High
CVE-2024-43598 was published for lightgbm (pip) Nov 12, 2024
SQL Server Native Client Remote Code Execution Vulnerability High Unreviewed
CVE-2024-43462 was published Nov 12, 2024
SQL Server Native Client Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38255 was published Nov 12, 2024
Windows Telephony Service Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-43626 was published Nov 12, 2024
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2024-43620 was published Nov 12, 2024
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2024-43622 was published Nov 12, 2024
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2024-43621 was published Nov 12, 2024
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2024-43627 was published Nov 12, 2024
SQL Server Native Client Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49013 was published Nov 12, 2024
SQL Server Native Client Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49007 was published Nov 12, 2024
SQL Server Native Client Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49012 was published Nov 12, 2024
SQL Server Native Client Remote Code Execution Vulnerability High Unreviewed
CVE-2024-48997 was published Nov 12, 2024
SQL Server Native Client Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49002 was published Nov 12, 2024
SQL Server Native Client Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49017 was published Nov 12, 2024
SQL Server Native Client Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49008 was published Nov 12, 2024
SQL Server Native Client Remote Code Execution Vulnerability High Unreviewed
CVE-2024-48996 was published Nov 12, 2024
SQL Server Native Client Remote Code Execution Vulnerability High Unreviewed
CVE-2024-48999 was published Nov 12, 2024
SQL Server Native Client Remote Code Execution Vulnerability High Unreviewed
CVE-2024-48998 was published Nov 12, 2024
SQL Server Native Client Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49010 was published Nov 12, 2024
SQL Server Native Client Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49006 was published Nov 12, 2024
SQL Server Native Client Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49004 was published Nov 12, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database