Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,308 advisories

Loading
Kofax Power PDF BMP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability.... High Unreviewed
CVE-2023-37344 was published May 3, 2024
Ashlar-Vellum Cobalt Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-35709 was published May 3, 2024
Kofax Power PDF BMP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability.... High Unreviewed
CVE-2023-37335 was published May 3, 2024
Kofax Power PDF PDF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability.... High Unreviewed
CVE-2023-38080 was published May 3, 2024
Ashlar-Vellum Cobalt CO File Parsing Heap-based Buffer Overflow Remote Code Execution... High Unreviewed
CVE-2023-34299 was published May 3, 2024
Ashlar-Vellum Cobalt Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-34289 was published May 3, 2024
An out-of-bounds write to heap in the pacparser library on Zscaler Client Connector on Mac may... Moderate Unreviewed
CVE-2023-28798 was published May 2, 2024
A vulnerability was found in UPX up to 4.2.2. It has been rated as critical. This issue affects... Moderate Unreviewed
CVE-2024-3209 was published Apr 3, 2024
IBM MQ Appliance 9.3 CD and LTS are vulnerable to a heap-based buffer overflow, caused by... High Unreviewed
CVE-2024-25048 was published Apr 27, 2024
A flaw was found in GLib. The GVariant deserialization code is vulnerable to a heap buffer... High Unreviewed
CVE-2023-32643 was published Sep 14, 2023
Microsoft ODBC Driver Remote Code Execution Vulnerability High Unreviewed
CVE-2024-26159 was published Mar 12, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21368 was published Feb 13, 2024
Microsoft ActiveX Data Objects Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21349 was published Feb 13, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21358 was published Feb 13, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21369 was published Feb 13, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-26166 was published Mar 12, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21366 was published Feb 13, 2024
Microsoft ODBC Driver Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21347 was published Feb 13, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21361 was published Feb 13, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21370 was published Feb 13, 2024
Microsoft Message Queuing (MSMQ) Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-21354 was published Feb 13, 2024
A vulnerability has been found in c-blosc2 up to 2.13.2 and classified as critical. Affected by... High Unreviewed
CVE-2024-3204 was published Apr 3, 2024
A vulnerability, which was classified as critical, was found in c-blosc2 up to 2.13.2. Affected... High Unreviewed
CVE-2024-3203 was published Apr 3, 2024
RoboDK v5.5.4 is vulnerable to heap-based buffer overflow while processing a specific project... Low Unreviewed
CVE-2024-0257 was published Apr 17, 2024
Server receiving a malformed message can cause a pointer to be overwritten which can result in a... High Unreviewed
CVE-2023-5404 was published Apr 17, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database