Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

693 advisories

Loading
Windows OLE Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30077 was published Jun 11, 2024
Windows Link Layer Topology Discovery Protocol Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30074 was published Jun 11, 2024
Win32k Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-30091 was published Jun 11, 2024
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30095 was published Jun 11, 2024
Winlogon Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2024-30066 was published Jun 11, 2024
A heap-based buffer overflow vulnerability exists in the FOXMAN-UN/UNEM that if exploited will... High Unreviewed
CVE-2024-2011 was published Jun 11, 2024
Kofax Power PDF PSD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability.... High Unreviewed
CVE-2024-5301 was published Jun 6, 2024
An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos... Moderate Unreviewed
CVE-2024-27374 was published Jun 5, 2024
An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos... Moderate Unreviewed
CVE-2024-27372 was published Jun 5, 2024
libmodbus v3.1.6 was discovered to contain a heap overflow via the modbus_mapping_free() function. High Unreviewed
CVE-2024-36843 was published May 31, 2024
Heap buffer overflow in WebRTC in Google Chrome prior to 125.0.6422.141 allowed a remote attacker... High Unreviewed
CVE-2024-5493 was published May 31, 2024
Heap buffer overflow in Dawn in Google Chrome prior to 125.0.6422.76 allowed a remote attacker to... High Unreviewed
CVE-2024-5160 was published May 22, 2024
Heap buffer overflow in ANGLE in Google Chrome prior to 125.0.6422.76 allowed a remote attacker... High Unreviewed
CVE-2024-5159 was published May 22, 2024
A memory corruption vulnerability in Fluent Bit versions 2.0.7 thru 3.0.3. This issue lies in the... Critical Unreviewed
CVE-2024-4323 was published May 20, 2024
Adobe Framemaker versions 2020.5, 2022.3 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-30288 was published May 16, 2024
Animate versions 24.0.2, 23.0.5 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-30294 was published May 16, 2024
Buffer overflow in some Zoom Workplace Apps and SDK’s may allow an authenticated user to conduct... Moderate Unreviewed
CVE-2024-27243 was published May 15, 2024
Windows DWM Core Library Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-30051 was published May 14, 2024
Win32k Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-30038 was published May 14, 2024
Windows Hyper-V Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30017 was published May 14, 2024
Windows Cryptographic Services Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30020 was published May 14, 2024
A vulnerability has been identified in Solid Edge (All versions < V224.0 Update 2). The affected... High Unreviewed
CVE-2024-34771 was published May 14, 2024
A vulnerability has been identified in Solid Edge (All versions < V224.0 Update 5). The affected... High Unreviewed
CVE-2024-33489 was published May 14, 2024
An issue was discovered in xmllint (from libxml2) before 2.11.8 and 2.12.x before 2.12.7.... High Unreviewed
CVE-2024-34459 was published May 14, 2024
TinyWeb 1.94 and below allows unauthenticated remote attackers to cause a denial of service ... High Unreviewed
CVE-2024-34199 was published May 14, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database