Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,300
Erlang
31
GitHub Actions
21
Go
2,069
Maven
5,000+
npm
3,744
NuGet
668
pip
3,429
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

9,454 advisories

Loading
Ashlar-Vellum Cobalt CO File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability.... High Unreviewed
CVE-2024-13046 was published Dec 30, 2024
Ashlar-Vellum Cobalt AR File Parsing Stack-based Buffer Overflow Remote Code Execution... High Unreviewed
CVE-2024-13045 was published Dec 30, 2024
Ashlar-Vellum Cobalt XE File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability.... High Unreviewed
CVE-2024-13048 was published Dec 30, 2024
Ashlar-Vellum Graphite VC6 File Parsing Heap-based Buffer Overflow Remote Code Execution... High Unreviewed
CVE-2024-13050 was published Dec 30, 2024
Ashlar-Vellum Graphite VC6 File Parsing Heap-based Buffer Overflow Remote Code Execution... High Unreviewed
CVE-2024-13051 was published Dec 30, 2024
Delta Electronics DRASimuCAD ICS File Parsing Out-Of-Bounds Write Remote Code Execution... High Unreviewed
CVE-2024-12835 was published Dec 30, 2024
In the Linux kernel, the following vulnerability has been resolved: nfs/localio: must clear res... High Unreviewed
CVE-2024-56740 was published Dec 29, 2024
In the Linux kernel, the following vulnerability has been resolved: xsk: fix OOB map writes when... High Unreviewed
CVE-2024-56614 was published Dec 27, 2024
A third-party vulnerability exists in the Rockwell Automation Arena® that could allow a threat... High Unreviewed
CVE-2024-12672 was published Dec 19, 2024
The L2CAP receive data buffer for L2CAP packets is restricted to packet sizes smaller than the... Moderate Unreviewed
CVE-2024-7137 was published Dec 19, 2024
Acrobat Reader DC version 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012.30205... High Unreviewed
CVE-2022-44513 was published Dec 19, 2024
Acrobat Reader DC version 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012.30205... High Unreviewed
CVE-2022-44512 was published Dec 19, 2024
Out of bounds write in V8 in Google Chrome prior to 131.0.6778.204 allowed a remote attacker to... High Unreviewed
CVE-2024-12695 was published Dec 19, 2024
In dhd_prot_flowrings_pool_release of dhd_msgbuf.c, there is a possible outcof bounds write due... Critical Unreviewed
CVE-2024-47038 was published Dec 18, 2024
A maliciously crafted DWF file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed
CVE-2024-12192 was published Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed
CVE-2024-12197 was published Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed
CVE-2024-12191 was published Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed
CVE-2024-12671 was published Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed
CVE-2024-12193 was published Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed
CVE-2024-11422 was published Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed
CVE-2024-12199 was published Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed
CVE-2024-12198 was published Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed
CVE-2024-12200 was published Dec 17, 2024
Velocidex WinPmem versions below 4.1 suffer from an Out of Bounds Write vulnerability whereby an... High Unreviewed
CVE-2024-12668 was published Dec 16, 2024
The issue was addressed with improved memory handling. This issue is fixed in watchOS 11.2,... Critical Unreviewed
CVE-2024-54534 was published Dec 12, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database