GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,964
Erlang
29
GitHub Actions
16
Go
1,746
Maven
4,974
npm
3,507
NuGet
609
pip
3,071
Pub
10
RubyGems
832
Rust
780
Swift
34
Unreviewed advisories
All unreviewed
5,000+
240,307 advisories
Filter by severity
A maliciously crafted CATPART file when parsed in CC5Dll.dll and ASMBASE228A.dll through Autodesk...
Unknown
Unreviewed
CVE-2024-23123
was published
Feb 22, 2024
A maliciously crafted STP file in ASMKERN228A.dll or ASMDATAX228A.dll when parsed through...
Unknown
Unreviewed
CVE-2024-23131
was published
Feb 22, 2024
A maliciously crafted STP or SLDPRT file when ODXSW_DLL.dll parsed through Autodesk AutoCAD can...
Unknown
Unreviewed
CVE-2024-23137
was published
Feb 22, 2024
A maliciously crafted MODEL file, when parsed in libodxdll through Autodesk applications, can...
Unknown
Unreviewed
CVE-2024-23141
was published
Jun 25, 2024
Use of Hard-coded Credentials vulnerability in Baicells Snap Router BaiCE_BMI on EP3011 (User...
Critical
Unreviewed
CVE-2023-6198
was published
Jun 25, 2024
A maliciously crafted CATPRODUCT file, when parsed in CC5Dll.dll through Autodesk applications,...
Unknown
Unreviewed
CVE-2024-23148
was published
Jun 25, 2024
A maliciously crafted 3DM, MODEL and X_B file, when parsed in ASMkern229A.dll and ASMBASE229A.dll...
Unknown
Unreviewed
CVE-2024-23143
was published
Jun 25, 2024
A maliciously crafted CATPART, STP, and MODEL file, when parsed in atf_dwg_consumer.dll,...
Unknown
Unreviewed
CVE-2024-23142
was published
Jun 25, 2024
A maliciously crafted CATPART, X_B and STEP, when parsed in ASMKERN228A.dll and ASMKERN229A.dll...
Unknown
Unreviewed
CVE-2024-23147
was published
Jun 25, 2024
A maliciously crafted X_B file, when parsed in pskernel.DLL through Autodesk applications, can...
Unknown
Unreviewed
CVE-2024-37000
was published
Jun 25, 2024
A maliciously crafted SLDDRW file, when parsed in ODXSW_DLL.dll through Autodesk applications,...
Unknown
Unreviewed
CVE-2024-23149
was published
Jun 25, 2024
Incorrect Default Permissions vulnerability in Hitachi Storage Provider for VMware vCenter allows...
Moderate
Unreviewed
CVE-2024-22385
was published
Jun 25, 2024
A maliciously crafted MODEL file, when parsed in ASMkern229A.dllthrough Autodesk applications,...
Unknown
Unreviewed
CVE-2024-37002
was published
Jun 25, 2024
A maliciously crafted CATPART file, when parsed in CC5Dll.dll and ASMBASE228A.dll through...
Unknown
Unreviewed
CVE-2024-23144
was published
Jun 25, 2024
A maliciously crafted PRT file, when parsed in opennurbs.dll through Autodesk applications, can...
Unknown
Unreviewed
CVE-2024-23145
was published
Jun 25, 2024
A maliciously crafted 3DM and MODEL file, when parsed in opennurbs.dll and atf_api.dll through...
Unknown
Unreviewed
CVE-2024-23140
was published
Jun 25, 2024
udn News Android APP stores the unencrypted user session in the local database when user log into...
Low
Unreviewed
CVE-2024-6295
was published
Jun 25, 2024
[A maliciously crafted 3DM file, when parsed in opennurbs.dll through Autodesk applications, can...
Unknown
Unreviewed
CVE-2024-37001
was published
Jun 25, 2024
A maliciously crafted MODEL 3DM, STP or SLDASM files in opennurbs.dll when parsed through...
Unknown
Unreviewed
CVE-2024-23129
was published
Feb 22, 2024
A maliciously crafted SLDASM, or SLDPRT files in ODXSW_DLL.dll when parsed through Autodesk...
Unknown
Unreviewed
CVE-2024-23130
was published
Feb 22, 2024
A maliciously crafted MODEL file in libodxdll.dll when parsed through Autodesk AutoCAD could lead...
Unknown
Unreviewed
CVE-2024-23128
was published
Feb 22, 2024
A maliciously crafted X_B and X_T file, when parsed in pskernel.DLL through Autodesk applications...
Unknown
Unreviewed
CVE-2024-23146
was published
Jun 25, 2024
badmonkey, a Security Researcher has found a flaw that allows for a unauthenticated DoS attack on...
Unknown
Unreviewed
CVE-2023-5038
was published
Jun 25, 2024
udn News Android APP stores the user session in logcat file when user log into the APP. A...
Low
Unreviewed
CVE-2024-6294
was published
Jun 25, 2024
All Samba versions 4.x.x before 4.9.17, 4.10.x before 4.10.11 and 4.11.x before 4.11.3 have an...
Low
Unreviewed
CVE-2019-14861
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API