GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,964
Erlang
29
GitHub Actions
16
Go
1,746
Maven
4,974
npm
3,507
NuGet
609
pip
3,071
Pub
10
RubyGems
832
Rust
780
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
220,965 advisories
Filter by severity
A maliciously crafted MODEL file, when parsed in libodxdll through Autodesk applications, can...
Unknown
Unreviewed
CVE-2024-23141
was published
Jun 25, 2024
A maliciously crafted CATPRODUCT file, when parsed in CC5Dll.dll through Autodesk applications,...
Unknown
Unreviewed
CVE-2024-23148
was published
Jun 25, 2024
A maliciously crafted 3DM, MODEL and X_B file, when parsed in ASMkern229A.dll and ASMBASE229A.dll...
Unknown
Unreviewed
CVE-2024-23143
was published
Jun 25, 2024
A maliciously crafted X_B and X_T file, when parsed in pskernel.DLL through Autodesk applications...
Unknown
Unreviewed
CVE-2024-23146
was published
Jun 25, 2024
A maliciously crafted CATPART, STP, and MODEL file, when parsed in atf_dwg_consumer.dll,...
Unknown
Unreviewed
CVE-2024-23142
was published
Jun 25, 2024
A maliciously crafted CATPART, X_B and STEP, when parsed in ASMKERN228A.dll and ASMKERN229A.dll...
Unknown
Unreviewed
CVE-2024-23147
was published
Jun 25, 2024
A maliciously crafted X_B file, when parsed in pskernel.DLL through Autodesk applications, can...
Unknown
Unreviewed
CVE-2024-37000
was published
Jun 25, 2024
A maliciously crafted SLDDRW file, when parsed in ODXSW_DLL.dll through Autodesk applications,...
Unknown
Unreviewed
CVE-2024-23149
was published
Jun 25, 2024
A maliciously crafted MODEL file, when parsed in ASMkern229A.dllthrough Autodesk applications,...
Unknown
Unreviewed
CVE-2024-37002
was published
Jun 25, 2024
A maliciously crafted CATPART file, when parsed in CC5Dll.dll and ASMBASE228A.dll through...
Unknown
Unreviewed
CVE-2024-23144
was published
Jun 25, 2024
A maliciously crafted PRT file, when parsed in opennurbs.dll through Autodesk applications, can...
Unknown
Unreviewed
CVE-2024-23145
was published
Jun 25, 2024
A maliciously crafted 3DM and MODEL file, when parsed in opennurbs.dll and atf_api.dll through...
Unknown
Unreviewed
CVE-2024-23140
was published
Jun 25, 2024
badmonkey, a Security Researcher has found a flaw that allows for a unauthenticated DoS attack on...
Unknown
Unreviewed
CVE-2023-5038
was published
Jun 25, 2024
udn News Android APP stores the unencrypted user session in the local database when user log into...
Low
Unreviewed
CVE-2024-6295
was published
Jun 25, 2024
udn News Android APP stores the user session in logcat file when user log into the APP. A...
Low
Unreviewed
CVE-2024-6294
was published
Jun 25, 2024
[A maliciously crafted 3DM file, when parsed in opennurbs.dll through Autodesk applications, can...
Unknown
Unreviewed
CVE-2024-37001
was published
Jun 25, 2024
Use of Hard-coded Credentials vulnerability in Baicells Snap Router BaiCE_BMI on EP3011 (User...
Critical
Unreviewed
CVE-2023-6198
was published
Jun 25, 2024
Incorrect Default Permissions vulnerability in Hitachi Storage Provider for VMware vCenter allows...
Moderate
Unreviewed
CVE-2024-22385
was published
Jun 25, 2024
SQL Injection vulnerability in the module "Help Desk - Customer Support Management System" ...
Unknown
Unreviewed
CVE-2024-34992
was published
Jun 25, 2024
SQL Injection vulnerability in the module "Isotope" (pk_isotope) <=1.7.3 from Promokit.eu for...
Unknown
Unreviewed
CVE-2024-36681
was published
Jun 25, 2024
SQL injection vulnerability in the module "Products Alert" (productsalert) before 1.7.4 from...
Unknown
Unreviewed
CVE-2024-36683
was published
Jun 25, 2024
In the module "Axepta" (axepta) before 1.3.4 from Quadra Informatique for PrestaShop, a guest can...
Unknown
Unreviewed
CVE-2024-34991
was published
Jun 25, 2024
Use after free in Dawn in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to...
Unknown
Unreviewed
CVE-2024-6293
was published
Jun 25, 2024
In the module "Theme settings" (pk_themesettings) <= 1.8.8 from Promokit.eu for PrestaShop, a...
Unknown
Unreviewed
CVE-2024-36682
was published
Jun 25, 2024
Use after free in Swiftshader in Google Chrome prior to 126.0.6478.126 allowed a remote attacker...
Unknown
Unreviewed
CVE-2024-6291
was published
Jun 25, 2024
ProTip!
Advisories are also available from the
GraphQL API