Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

613 advisories

Loading
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21425 was published Jul 9, 2024
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21317 was published Jul 9, 2024
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability High Unreviewed
CVE-2024-20701 was published Jul 9, 2024
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21415 was published Jul 9, 2024
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21335 was published Jul 9, 2024
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21331 was published Jul 9, 2024
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21373 was published Jul 9, 2024
A heap-based buffer overflow vulnerability exists in the configuration file mib_init_value_array... High Unreviewed
CVE-2024-21778 was published Jul 8, 2024
The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 (for 7zz) contains a heap-based buffer... High Unreviewed
CVE-2023-52168 was published Jul 3, 2024
FFmpeg 7.0 contains a heap-buffer-overflow at libavfilter/vf_tiltandshift.c:189:5 in copy_column. High Unreviewed
CVE-2024-32229 was published Jul 1, 2024
A maliciously crafted MODEL file, when parsed in atf_asm_interface.dll through Autodesk... High Unreviewed
CVE-2024-23155 was published Jun 25, 2024
[A maliciously crafted 3DM file, when parsed in opennurbs.dll through Autodesk applications, can... High Unreviewed
CVE-2024-37001 was published Jun 25, 2024
Parallels Desktop Toolgate Heap-based Buffer Overflow Local Privilege Escalation Vulnerability.... High Unreviewed
CVE-2024-6154 was published Jun 20, 2024
Heap buffer overflow in Tab Groups in Google Chrome prior to 126.0.6478.54 allowed a remote... High Unreviewed
CVE-2024-5835 was published Jun 11, 2024
libiec61850 v1.5 was discovered to contain a heap overflow via the BerEncoder_encodeLength... High Unreviewed
CVE-2024-36702 was published Jun 11, 2024
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-30085 was published Jun 11, 2024
Windows Link Layer Topology Discovery Protocol Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30074 was published Jun 11, 2024
Windows OLE Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30077 was published Jun 11, 2024
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30094 was published Jun 11, 2024
Windows Link Layer Topology Discovery Protocol Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30075 was published Jun 11, 2024
Win32k Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-30091 was published Jun 11, 2024
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30095 was published Jun 11, 2024
A heap-based buffer overflow vulnerability exists in the FOXMAN-UN/UNEM that if exploited will... High Unreviewed
CVE-2024-2011 was published Jun 11, 2024
Kofax Power PDF PSD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability.... High Unreviewed
CVE-2024-5301 was published Jun 6, 2024
libmodbus v3.1.6 was discovered to contain a heap overflow via the modbus_mapping_free() function. High Unreviewed
CVE-2024-36843 was published May 31, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database