Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

6,951 advisories

Loading
A vulnerability has been identified in Tecnomatix Plant Simulation V2302 (All versions < V2302... High Unreviewed
CVE-2024-45470 was published Oct 8, 2024
A vulnerability has been identified in Tecnomatix Plant Simulation V2302 (All versions < V2302... High Unreviewed
CVE-2024-45471 was published Oct 8, 2024
A vulnerability has been identified in JT2Go (All versions < V2406.0003). The affected... High Unreviewed
CVE-2024-41902 was published Oct 8, 2024
Out-of-bounds write in parsing h.265 format in librtppayload.so prior to SMR Oct-2024 Release 1... High Unreviewed
CVE-2024-34667 was published Oct 8, 2024
Out-of-bounds write in parsing h.263+ format in librtppayload.so prior to SMR Oct-2024 Release 1... High Unreviewed
CVE-2024-34669 was published Oct 8, 2024
Out-of-bounds write in parsing h.264 format in a specific mode in librtppayload.so prior to SMR... High Unreviewed
CVE-2024-34666 was published Oct 8, 2024
Out-of-bounds write in parsing h.263 format in librtppayload.so prior to SMR Oct-2024 Release 1... High Unreviewed
CVE-2024-34668 was published Oct 8, 2024
Out-of-bounds write in parsing h.264 format in librtppayload.so prior to SMR Oct-2024 Release 1... High Unreviewed
CVE-2024-34665 was published Oct 8, 2024
In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead... High Unreviewed
CVE-2024-20092 was published Oct 7, 2024
Stack-based buffer overflow vulnerability exists in Kostac PLC Programming Software (Former name:... High Unreviewed
CVE-2024-47135 was published Oct 3, 2024
Out-of-bounds write vulnerability exists in Kostac PLC Programming Software (Former name: Koyo... High Unreviewed
CVE-2024-47134 was published Oct 3, 2024
Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z... High Unreviewed
CVE-2024-20499 was published Oct 2, 2024
Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z... High Unreviewed
CVE-2024-20501 was published Oct 2, 2024
cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_chunk() function at... High Unreviewed
CVE-2024-46276 was published Oct 1, 2024
cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_stored() function at... High Unreviewed
CVE-2024-46274 was published Oct 1, 2024
cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_find() function at... High Unreviewed
CVE-2024-46264 was published Oct 1, 2024
cute_png v1.05 was discovered to contain a stack overflow via the cp_dynamic() function at... High Unreviewed
CVE-2024-46263 was published Oct 1, 2024
cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_block() function at... High Unreviewed
CVE-2024-46267 was published Oct 1, 2024
cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_load_png_mem()... High Unreviewed
CVE-2024-46258 was published Oct 1, 2024
cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_make32() function at... High Unreviewed
CVE-2024-46261 was published Oct 1, 2024
cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_unfilter() function at... High Unreviewed
CVE-2024-46259 was published Oct 1, 2024
A maliciously crafted DWF file, when parsed in dwfcore.dll through Autodesk Navisworks, can force... High Unreviewed
CVE-2024-7674 was published Sep 30, 2024
A maliciously crafted DWF file, when parsed in dwfcore.dll through Autodesk Navisworks, can force... High Unreviewed
CVE-2024-7672 was published Sep 30, 2024
A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, can force... High Unreviewed
CVE-2024-7673 was published Sep 30, 2024
A maliciously crafted DWFX file, when parsed in dwfcore.dll through Autodesk Navisworks, can... High Unreviewed
CVE-2024-7671 was published Sep 30, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database