GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,631
NuGet
638
pip
3,246
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
2,113 advisories
Filter by severity
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-38210
was published
Aug 23, 2024
An out-of-bounds read vulnerability exists in the OpenPLC Runtime EtherNet/IP PCCC parser...
High
Unreviewed
CVE-2024-36980
was published
Sep 18, 2024
An out-of-bounds read vulnerability exists in the OpenPLC Runtime EtherNet/IP PCCC parser...
High
Unreviewed
CVE-2024-36981
was published
Sep 18, 2024
Microsoft SQL Server Native Scoring Information Disclosure Vulnerability
High
Unreviewed
CVE-2024-37342
was published
Sep 10, 2024
Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-37338
was published
Sep 10, 2024
Microsoft SQL Server Native Scoring Information Disclosure Vulnerability
High
Unreviewed
CVE-2024-37966
was published
Sep 10, 2024
Windows Remote Access Connection Manager Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38240
was published
Sep 10, 2024
Malicious software running in a guest VM can exploit the buffer overflow to achieve code...
High
Unreviewed
CVE-2024-41928
was published
Sep 5, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/v3d: Fix out-of-bounds...
High
Unreviewed
CVE-2024-44993
was published
Sep 4, 2024
In the Linux kernel, the following vulnerability has been resolved:
tty: serial: qcom-geni...
High
Unreviewed
CVE-2022-48871
was published
Aug 21, 2024
The ctl_request_sense function could expose up to three bytes of the kernel heap to userspace.
...
High
Unreviewed
CVE-2024-43110
was published
Sep 5, 2024
Out-of-bounds write vulnerability in the kernel driver module. Successful exploitation of this...
High
Unreviewed
CVE-2023-46767
was published
Nov 8, 2023
Out-of-bounds write vulnerability in the kernel driver module. Successful exploitation of this...
High
Unreviewed
CVE-2023-46766
was published
Nov 8, 2023
Out-of-bounds write vulnerability in the kernel driver module. Successful exploitation of this...
High
Unreviewed
CVE-2023-46762
was published
Nov 8, 2023
Transient DOS while parsing the multi-link element Control field when common information length...
High
Unreviewed
CVE-2024-33057
was published
Sep 2, 2024
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
High
Unreviewed
CVE-2024-33051
was published
Sep 2, 2024
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length...
High
Unreviewed
CVE-2024-33050
was published
Sep 2, 2024
Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.
High
Unreviewed
CVE-2024-33048
was published
Sep 2, 2024
Memory corruption when the captureRead QDCM command is invoked from user-space.
High
Unreviewed
CVE-2024-33047
was published
Sep 2, 2024
Out-of-bounds access vulnerability in the device authentication module. Successful exploitation...
High
Unreviewed
CVE-2023-44112
was published
Jan 16, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: add error handle...
High
Unreviewed
CVE-2024-39471
was published
Jun 25, 2024
Heap-based Buffer Overflow, Memory Corruption, Out-Of-Bounds Read, Out-Of-Bounds Write, Stack...
High
Unreviewed
CVE-2024-1847
was published
Feb 28, 2024
Heap-based Buffer Overflow, Memory Corruption, Out-Of-Bounds Read, Out-Of-Bounds Write, Stack...
High
Unreviewed
CVE-2024-1848
was published
Mar 22, 2024
Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can result in a...
High
Unreviewed
CVE-2024-39882
was published
Jul 10, 2024
In tmu_tz_control of tmu.c, there is a possible out of bounds read due to a missing bounds check....
High
Unreviewed
CVE-2024-25992
was published
Mar 11, 2024
ProTip!
Advisories are also available from the
GraphQL API