GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,131
Erlang
29
GitHub Actions
19
Go
1,934
Maven
5,000+
npm
3,668
NuGet
642
pip
3,287
Pub
10
RubyGems
873
Rust
828
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
5,223 advisories
Filter by severity
Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can result in a...
High
Unreviewed
CVE-2024-47963
was published
Oct 10, 2024
Animate versions 23.0.7, 24.0.4 and earlier are affected by a Stack-based Buffer Overflow...
High
Unreviewed
CVE-2024-47410
was published
Oct 9, 2024
Animate versions 23.0.7, 24.0.4 and earlier are affected by a Heap-based Buffer Overflow...
High
Unreviewed
CVE-2024-47417
was published
Oct 9, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: Validate TA...
High
Unreviewed
CVE-2024-44977
was published
Sep 4, 2024
Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contain a...
High
Unreviewed
CVE-2024-29176
was published
Jun 26, 2024
A memory corruption vulnerability in Palo Alto Networks PAN-OS software allows an unauthenticated...
High
Unreviewed
CVE-2024-9468
was published
Oct 9, 2024
Type Confusion in V8 in Google Chrome prior to 129.0.6668.100 allowed a remote attacker to...
High
Unreviewed
CVE-2024-9602
was published
Oct 9, 2024
Substance3D - Stager versions 3.0.3 and earlier are affected by an out-of-bounds write...
High
Unreviewed
CVE-2024-45140
was published
Oct 9, 2024
Substance3D - Stager versions 3.0.3 and earlier are affected by an out-of-bounds write...
High
Unreviewed
CVE-2024-45144
was published
Oct 9, 2024
Substance3D - Stager versions 3.0.3 and earlier are affected by an out-of-bounds write...
High
Unreviewed
CVE-2024-45152
was published
Oct 9, 2024
Substance3D - Stager versions 3.0.3 and earlier are affected by an out-of-bounds write...
High
Unreviewed
CVE-2024-45141
was published
Oct 9, 2024
Dimension versions 4.0.3 and earlier are affected by an out-of-bounds write vulnerability that...
High
Unreviewed
CVE-2024-45150
was published
Oct 9, 2024
Heap buffer overflow in Browser History in Google Chrome prior to 112.0.5615.49 allowed a remote...
High
Unreviewed
CVE-2023-1820
was published
Apr 5, 2023
Heap buffer overflow in Visuals in Google Chrome prior to 112.0.5615.49 allowed a remote attacker...
High
Unreviewed
CVE-2023-1810
was published
Apr 5, 2023
Out of bounds memory access in DOM Bindings in Google Chrome prior to 112.0.5615.49 allowed a...
High
Unreviewed
CVE-2023-1812
was published
Apr 5, 2023
Microsoft Word Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-1716.
High
Unreviewed
CVE-2021-1715
was published
May 24, 2022
File Sharing Wizard version 1.5.0 build 2008 is affected by a Structured Exception Handler based...
High
Unreviewed
CVE-2019-18655
was published
May 24, 2022
A vulnerability has been identified in Tecnomatix Plant Simulation V2302 (All versions < V2302...
High
Unreviewed
CVE-2024-45471
was published
Oct 8, 2024
A vulnerability has been identified in Tecnomatix Plant Simulation V2302 (All versions < V2302...
High
Unreviewed
CVE-2024-45470
was published
Oct 8, 2024
A vulnerability has been identified in Tecnomatix Plant Simulation V2302 (All versions < V2302...
High
Unreviewed
CVE-2024-45469
was published
Oct 8, 2024
In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead...
High
Unreviewed
CVE-2024-20092
was published
Oct 7, 2024
A maliciously crafted DWF file, when parsed in dwfcore.dll through Autodesk Navisworks, can force...
High
Unreviewed
CVE-2024-7674
was published
Sep 30, 2024
A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, can force...
High
Unreviewed
CVE-2024-7673
was published
Sep 30, 2024
cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_find() function at...
High
Unreviewed
CVE-2024-46264
was published
Oct 1, 2024
cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_chunk() function at...
High
Unreviewed
CVE-2024-46276
was published
Oct 1, 2024
ProTip!
Advisories are also available from the
GraphQL API