Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,631
NuGet
638
pip
3,246
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,113 advisories

Loading
An out-of-bounds read vulnerability exists in the OpenPLC Runtime EtherNet/IP PCCC parser... High Unreviewed
CVE-2024-36981 was published Sep 18, 2024
An out-of-bounds read vulnerability exists in the OpenPLC Runtime EtherNet/IP PCCC parser... High Unreviewed
CVE-2024-36980 was published Sep 18, 2024
Windows Remote Access Connection Manager Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38240 was published Sep 10, 2024
Microsoft SQL Server Native Scoring Information Disclosure Vulnerability High Unreviewed
CVE-2024-37342 was published Sep 10, 2024
Microsoft SQL Server Native Scoring Information Disclosure Vulnerability High Unreviewed
CVE-2024-37966 was published Sep 10, 2024
Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability High Unreviewed
CVE-2024-37338 was published Sep 10, 2024
The ctl_request_sense function could expose up to three bytes of the kernel heap to userspace. ... High Unreviewed
CVE-2024-43110 was published Sep 5, 2024
Malicious software running in a guest VM can exploit the buffer overflow to achieve code... High Unreviewed
CVE-2024-41928 was published Sep 5, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Fix out-of-bounds... High Unreviewed
CVE-2024-44993 was published Sep 4, 2024
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length... High Unreviewed
CVE-2024-33050 was published Sep 2, 2024
Transient DOS while parsing the multi-link element Control field when common information length... High Unreviewed
CVE-2024-33057 was published Sep 2, 2024
Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame. High Unreviewed
CVE-2024-33048 was published Sep 2, 2024
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length. High Unreviewed
CVE-2024-33051 was published Sep 2, 2024
Memory corruption when the captureRead QDCM command is invoked from user-space. High Unreviewed
CVE-2024-33047 was published Sep 2, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38210 was published Aug 23, 2024
Out of bounds memory access in Skia in Google Chrome prior to 128.0.6613.84 allowed a remote... High Unreviewed
CVE-2024-7966 was published Aug 21, 2024
In the Linux kernel, the following vulnerability has been resolved: tty: serial: qcom-geni... High Unreviewed
CVE-2022-48871 was published Aug 21, 2024
Acrobat Reader versions 20.005.30636, 24.002.20965, 24.002.20964, 24.001.30123 and earlier are... High Unreviewed
CVE-2024-39426 was published Aug 14, 2024
InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by an out-of-bounds read... High Unreviewed
CVE-2024-39393 was published Aug 14, 2024
Out of bounds read in OpenBMC Firmware for some Intel(R) Server Platforms before versions egs-1... High Unreviewed
CVE-2023-49144 was published Aug 14, 2024
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38184 was published Aug 13, 2024
NTFS Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38117 was published Aug 13, 2024
Windows Network Address Translation (NAT) Denial of Service Vulnerability High Unreviewed
CVE-2024-38132 was published Aug 13, 2024
Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38134 was published Aug 13, 2024
Windows Secure Channel Denial of Service Vulnerability High Unreviewed
CVE-2024-38148 was published Aug 13, 2024
ProTip! Advisories are also available from the GraphQL API