GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
12,814 advisories
Filter by severity
A maliciously crafted SLDASM or SLDPRT file, when parsed in ODXSW_DLL.dll through Autodesk...
High
Unreviewed
CVE-2024-23157
was published
Jun 25, 2024
A maliciously crafted 3DM file, when parsed in opennurbs.dll and ASMkern229A.dll through Autodesk...
High
Unreviewed
CVE-2024-23156
was published
Jun 25, 2024
A maliciously crafted X_B file, when parsed in pskernel.DLL through Autodesk applications, can...
High
Unreviewed
CVE-2024-37000
was published
Jun 25, 2024
A maliciously crafted CATPRODUCT file, when parsed in CC5Dll.dll through Autodesk applications,...
High
Unreviewed
CVE-2024-23148
was published
Jun 25, 2024
A maliciously crafted CATPART, X_B and STEP, when parsed in ASMKERN228A.dll and ASMKERN229A.dll...
High
Unreviewed
CVE-2024-23147
was published
Jun 25, 2024
An issue in htop-dev htop v.2.20 allows a local attacker to cause an out-of-bounds access in the...
High
Unreviewed
CVE-2024-37676
was published
Jun 20, 2024
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-35250
was published
Jun 11, 2024
Microsoft Streaming Service Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-30090
was published
Jun 11, 2024
An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in...
High
Unreviewed
CVE-2024-27857
was published
Jun 10, 2024
The issue was addressed with improved memory handling. This issue is fixed in tvOS 17.5, iOS 16.7...
High
Unreviewed
CVE-2024-27820
was published
Jun 10, 2024
The issue was addressed with improved bounds checks. This issue is fixed in tvOS 17.5, visionOS 1...
High
Unreviewed
CVE-2024-27851
was published
Jun 10, 2024
Kofax Power PDF PDF File Parsing Memory Corruption Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2024-5306
was published
Jun 6, 2024
Denial of Service via Zip/Decompression Bomb sent over HTTP or gRPC
High
CVE-2024-36129
was published
for
go.opentelemetry.io/collector/config/configgrpc
(Go)
Jun 5, 2024
In the Linux kernel, the following vulnerability has been resolved:
virtio-net: fix pages...
Moderate
Unreviewed
CVE-2021-47367
was published
May 21, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Avoid HDCP...
Critical
Unreviewed
CVE-2021-47348
was published
May 21, 2024
Improper buffer restrictions in PlatformPfrDxe driver in UEFI firmware for some Intel(R) Server...
High
Unreviewed
CVE-2024-23980
was published
May 16, 2024
Improper buffer restrictions in Intel(R) Media SDK software all versions may allow an...
Low
Unreviewed
CVE-2023-47169
was published
May 16, 2024
Improper input validation in Intel(R) Media SDK software all versions may allow an authenticated...
Moderate
Unreviewed
CVE-2023-48368
was published
May 16, 2024
Improper buffer restrictions in Intel(R) Media SDK all versions may allow an authenticated user...
Moderate
Unreviewed
CVE-2023-45221
was published
May 16, 2024
Improper conditions check in some Intel(R) BIOS PPAM firmware may allow a privileged user to...
Moderate
Unreviewed
CVE-2023-28383
was published
May 16, 2024
Buffer overflow in some Zoom Workplace Apps and SDK’s may allow an authenticated user to conduct...
Moderate
Unreviewed
CVE-2024-27243
was published
May 15, 2024
Duplicate Advisory: Nokogiri updates packaged libxml2 to v2.12.7 to resolve CVE-2024-34459
Low
GHSA-r3w4-36x6-7r99
was published
for
nokogiri
(RubyGems)
May 14, 2024
•
withdrawn
A vulnerability has been identified in PS/IGES Parasolid Translator Component (All versions < V27...
High
Unreviewed
CVE-2024-32058
was published
May 14, 2024
NVIDIA Triton Inference Server for Linux contains a vulnerability in shared memory APIs, where a...
Moderate
Unreviewed
CVE-2024-0088
was published
May 14, 2024
Under certain conditions, a potential data leak may occur in the Traffic Management Microkernels...
Moderate
Unreviewed
CVE-2024-32761
was published
May 8, 2024
ProTip!
Advisories are also available from the
GraphQL API