Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,246
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,113 advisories

Loading
In Sante DICOM Viewer Pro versions 14.0.3 and prior, a user must open a malicious DICOM file,... High Unreviewed
CVE-2024-1453 was published Mar 1, 2024
Heap-based Buffer Overflow, Memory Corruption, Out-Of-Bounds Read, Out-Of-Bounds Write, Stack... High Unreviewed
CVE-2024-1847 was published Feb 28, 2024
In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_frag: fix... High Unreviewed
CVE-2021-46954 was published Feb 27, 2024
In the Linux kernel, the following vulnerability has been resolved: NFS: fs_context: validate... High Unreviewed
CVE-2021-46952 was published Feb 27, 2024
In the Linux kernel, the following vulnerability has been resolved: netlabel: fix out-of-bounds... High Unreviewed
CVE-2019-25160 was published Feb 26, 2024
In the Linux kernel, the following vulnerability has been resolved: net: qualcomm: rmnet: fix... High Unreviewed
CVE-2024-26597 was published Feb 23, 2024
In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate mech token... High Unreviewed
CVE-2024-26594 was published Feb 23, 2024
In the Linux kernel, the following vulnerability has been resolved: i2c: i801: Fix block process... High Unreviewed
CVE-2024-26593 was published Feb 23, 2024
Substance3D - Designer versions 13.1.0 and earlier are affected by an out-of-bounds read... High Unreviewed
CVE-2024-20750 was published Feb 15, 2024
Substance3D - Painter versions 9.1.1 and earlier are affected by an out-of-bounds read... High Unreviewed
CVE-2024-20742 was published Feb 15, 2024
A vulnerability has been identified in Tecnomatix Plant Simulation V2201 (All versions < V2201... High Unreviewed
CVE-2024-23802 was published Feb 13, 2024
A vulnerability has been identified in Simcenter Femap (All versions < V2401.0000), Simcenter... High Unreviewed
CVE-2024-24923 was published Feb 13, 2024
A vulnerability has been identified in Parasolid V35.0 (All versions < V35.0.263), Parasolid V35... High Unreviewed
CVE-2023-49125 was published Feb 13, 2024
A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote... High Unreviewed
CVE-2024-20290 was published Feb 7, 2024
Espruino 2v20 (commit fcc9ba4) was discovered to contain an Out-of-bounds Read via... High Unreviewed
CVE-2024-25201 was published Feb 7, 2024
Transient DOS in WLAN Firmware when the length of received beacon is less than length of ieee802... High Unreviewed
CVE-2023-43533 was published Feb 6, 2024
Information disclosure in Modem while processing SIB5. High Unreviewed
CVE-2023-33058 was published Feb 6, 2024
Transient DOS in Core when DDR memory check is called while DDR is not initialized. High Unreviewed
CVE-2023-33060 was published Feb 6, 2024
Graphviz 2.36 before 10.0.0 has an out-of-bounds read via a crafted config6a file. NOTE:... High Unreviewed
CVE-2023-46045 was published Feb 2, 2024
A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker... High Unreviewed
CVE-2023-40547 was published Jan 25, 2024
An issue was discovered in ksmbd in the Linux kernel before 6.6.10. smb2_get_data_area_len in fs... High Unreviewed
CVE-2024-22705 was published Jan 23, 2024
Out of bounds memory access in V8 in Google Chrome prior to 120.0.6099.224 allowed a remote... High Unreviewed
CVE-2024-0519 was published Jan 17, 2024
Out-of-bounds access vulnerability in the device authentication module. Successful exploitation... High Unreviewed
CVE-2023-44112 was published Jan 16, 2024
An out-of-bounds access vulnerability involving netfilter was reported and fixed as: f1082dd31fe4... High Unreviewed
CVE-2023-6040 was published Jan 12, 2024
Microsoft AllJoyn API Denial of Service Vulnerability High Unreviewed
CVE-2024-20687 was published Jan 9, 2024
ProTip! Advisories are also available from the GraphQL API