Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,231
Erlang
31
GitHub Actions
20
Go
1,991
Maven
5,000+
npm
3,709
NuGet
661
pip
3,341
Pub
11
RubyGems
884
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+

5,609 advisories

Loading
Heap buffer overflow in Visuals in Google Chrome prior to 112.0.5615.49 allowed a remote attacker... High Unreviewed
CVE-2023-1810 was published Apr 5, 2023
Heap buffer overflow in Browser History in Google Chrome prior to 112.0.5615.49 allowed a remote... High Unreviewed
CVE-2023-1820 was published Apr 5, 2023
Dimension versions 4.0.3 and earlier are affected by an out-of-bounds write vulnerability that... High Unreviewed
CVE-2024-45150 was published Oct 9, 2024
Substance3D - Stager versions 3.0.3 and earlier are affected by an out-of-bounds write... High Unreviewed
CVE-2024-45141 was published Oct 9, 2024
Substance3D - Stager versions 3.0.3 and earlier are affected by an out-of-bounds write... High Unreviewed
CVE-2024-45152 was published Oct 9, 2024
Substance3D - Stager versions 3.0.3 and earlier are affected by an out-of-bounds write... High Unreviewed
CVE-2024-45140 was published Oct 9, 2024
Substance3D - Stager versions 3.0.3 and earlier are affected by an out-of-bounds write... High Unreviewed
CVE-2024-45144 was published Oct 9, 2024
Type Confusion in V8 in Google Chrome prior to 129.0.6668.100 allowed a remote attacker to... High Unreviewed
CVE-2024-9602 was published Oct 9, 2024
A memory corruption vulnerability in Palo Alto Networks PAN-OS software allows an unauthenticated... High Unreviewed
CVE-2024-9468 was published Oct 9, 2024
Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contain a... High Unreviewed
CVE-2024-29176 was published Jun 26, 2024
concat built-in can corrupt memory in vyper High
CVE-2024-22419 was published for vyper (pip) Jan 19, 2024
cyberthirst kuroi8
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Validate TA... High Unreviewed
CVE-2024-44977 was published Sep 4, 2024
Animate versions 23.0.7, 24.0.4 and earlier are affected by a Stack-based Buffer Overflow... High Unreviewed
CVE-2024-47410 was published Oct 9, 2024
Animate versions 23.0.7, 24.0.4 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-47417 was published Oct 9, 2024
Pillow Out-of-bounds Write High
CVE-2020-35654 was published for Pillow (pip) Mar 18, 2021
sunSUNQ
ASUS RT-AC86U’s specific cgi function has a stack-based buffer overflow vulnerability due to... High Unreviewed
CVE-2023-28703 was published Jul 6, 2023
Heap buffer overflow in Layout in Google Chrome prior to 127.0.6533.99 allowed a remote attacker... High Unreviewed
CVE-2024-7534 was published Aug 6, 2024
Heap buffer overflow in Skia in Google Chrome prior to 128.0.6613.113 allowed a remote attacker... High Unreviewed
CVE-2024-8198 was published Aug 29, 2024
xfpt versions prior to 1.01 fails to handle appropriately some parameters inside the input data,... High Unreviewed
CVE-2024-43700 was published Aug 29, 2024
Stack-based buffer overflow vulnerability exists in Kostac PLC Programming Software (Former name:... High Unreviewed
CVE-2024-47135 was published Oct 3, 2024
An out-of-bounds memory write flaw was found in the Linux kernel’s Transport Layer Security... High Unreviewed
CVE-2024-0646 was published Jan 17, 2024
A vulnerability classified as critical has been found in Tenda O6 1.0.0.7(2054). Affected is the... High Unreviewed
CVE-2024-8231 was published Aug 28, 2024
A maliciously crafted PDF file, when parsed through Autodesk Revit, can force an Out-of-Bounds... High Unreviewed
CVE-2024-7993 was published Oct 17, 2024
Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to... High Unreviewed
CVE-2024-47964 was published Oct 10, 2024
Buffer overflow vulnerability in the signelf library used by Zscaler Client Connector on Linux... High Unreviewed
CVE-2023-28793 was published Oct 23, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database