GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,084
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
12,668 advisories
Filter by severity
In a
Silicon Labs multi-protocol gateway, a corrupt pointer to buffered data on a multi...
Moderate
Unreviewed
CVE-2024-3017
was published
Jun 27, 2024
A maliciously crafted SLDASM or SLDPRT file, when parsed in ODXSW_DLL.dll through Autodesk...
Unknown
Unreviewed
CVE-2024-23157
was published
Jun 25, 2024
A maliciously crafted 3DM file, when parsed in opennurbs.dll and ASMkern229A.dll through Autodesk...
Unknown
Unreviewed
CVE-2024-23156
was published
Jun 25, 2024
A maliciously crafted CATPRODUCT file, when parsed in CC5Dll.dll through Autodesk applications,...
Unknown
Unreviewed
CVE-2024-37006
was published
Jun 25, 2024
A maliciously crafted CATPRODUCT file, when parsed in CC5Dll.dll through Autodesk applications,...
Unknown
Unreviewed
CVE-2024-23148
was published
Jun 25, 2024
A maliciously crafted CATPART, X_B and STEP, when parsed in ASMKERN228A.dll and ASMKERN229A.dll...
Unknown
Unreviewed
CVE-2024-23147
was published
Jun 25, 2024
A maliciously crafted X_B file, when parsed in pskernel.DLL through Autodesk applications, can...
Unknown
Unreviewed
CVE-2024-37000
was published
Jun 25, 2024
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-35250
was published
Jun 11, 2024
Microsoft Streaming Service Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-30090
was published
Jun 11, 2024
Kofax Power PDF PDF File Parsing Memory Corruption Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2024-5306
was published
Jun 6, 2024
Denial of Service via Zip/Decompression Bomb sent over HTTP or gRPC
High
CVE-2024-36129
was published
for
go.opentelemetry.io/collector/config/configgrpc
(Go)
Jun 5, 2024
Improper buffer restrictions in PlatformPfrDxe driver in UEFI firmware for some Intel(R) Server...
High
Unreviewed
CVE-2024-23980
was published
May 16, 2024
Improper buffer restrictions in Intel(R) Media SDK all versions may allow an authenticated user...
Moderate
Unreviewed
CVE-2023-45221
was published
May 16, 2024
Buffer overflow in some Zoom Workplace Apps and SDK’s may allow an authenticated user to conduct...
Moderate
Unreviewed
CVE-2024-27243
was published
May 15, 2024
Duplicate Advisory: Nokogiri updates packaged libxml2 to v2.12.7 to resolve CVE-2024-34459
Low
GHSA-r3w4-36x6-7r99
was published
for
nokogiri
(RubyGems)
May 14, 2024
•
withdrawn
A vulnerability has been identified in PS/IGES Parasolid Translator Component (All versions < V27...
High
Unreviewed
CVE-2024-32058
was published
May 14, 2024
NVIDIA Triton Inference Server for Linux contains a vulnerability in shared memory APIs, where a...
Moderate
Unreviewed
CVE-2024-0088
was published
May 14, 2024
Under certain conditions, a potential data leak may occur in the Traffic Management Microkernels...
Moderate
Unreviewed
CVE-2024-32761
was published
May 8, 2024
A buffer error in Panasonic KW Watcher versions 1.00 through 2.83 may allow attackers malicious...
Moderate
Unreviewed
CVE-2024-4162
was published
May 8, 2024
Kofax Power PDF J2K File Parsing Memory Corruption Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2023-51608
was published
May 3, 2024
Trimble SketchUp Viewer SKP File Parsing Memory Corruption Remote Code Execution Vulnerability....
High
Unreviewed
CVE-2023-50187
was published
May 3, 2024
PDF-XChange Editor JP2 File Parsing Memory Corruption Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2023-42078
was published
May 3, 2024
PDF-XChange Editor PDF File Parsing Memory Corruption Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2023-42043
was published
May 3, 2024
PDF-XChange Editor JP2 File Parsing Memory Corruption Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2023-42047
was published
May 3, 2024
Kofax Power PDF PDF File Parsing Memory Corruption Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2023-42036
was published
May 3, 2024
ProTip!
Advisories are also available from the
GraphQL API