Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

12,724 advisories

Loading
A memory corruption issue due to an improper length check in LabVIEW tdcore.dll may disclose... High Unreviewed
CVE-2024-4080 was published Jul 23, 2024
An SMM callout vulnerability was discovered in Supermicro X11DPH-T, X11DPH-Tq, and X11DPH-i... High Unreviewed
CVE-2024-36434 was published Jul 15, 2024
An arbitrary memory write vulnerability was discovered in Supermicro X11DPH-T, X11DPH-Tq, and... High Unreviewed
CVE-2024-36433 was published Jul 15, 2024
Denial of Service in NetScaler Console (formerly NetScaler ADM), NetScaler Agent, and NetScaler... High Unreviewed
CVE-2024-6236 was published Jul 10, 2024
Windows Fax Service Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38104 was published Jul 9, 2024
Memory corruption during the secure boot process, when the `bootm` command is used, it bypasses... Moderate Unreviewed
CVE-2024-21482 was published Jul 1, 2024
Memory corruption while processing IOCTL handler in FastRPC. High Unreviewed
CVE-2023-43554 was published Jul 1, 2024
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Arm Ltd... High Unreviewed
CVE-2024-0153 was published Jul 1, 2024
In Modem, there is a possible system crash due to incorrect error handling. This could lead to... High Unreviewed
CVE-2024-20077 was published Jul 1, 2024
In Modem, there is a possible system crash due to incorrect error handling. This could lead to... High Unreviewed
CVE-2024-20076 was published Jul 1, 2024
In a Silicon Labs  multi-protocol gateway, a corrupt pointer to buffered data on a multi... Moderate Unreviewed
CVE-2024-3017 was published Jun 27, 2024
A maliciously crafted SLDASM or SLDPRT file, when parsed in ODXSW_DLL.dll through Autodesk... High Unreviewed
CVE-2024-23157 was published Jun 25, 2024
A maliciously crafted CATPRODUCT file, when parsed in CC5Dll.dll through Autodesk applications,... High Unreviewed
CVE-2024-37006 was published Jun 25, 2024
A maliciously crafted 3DM file, when parsed in opennurbs.dll and ASMkern229A.dll through Autodesk... High Unreviewed
CVE-2024-23156 was published Jun 25, 2024
A maliciously crafted X_B file, when parsed in pskernel.DLL through Autodesk applications, can... High Unreviewed
CVE-2024-37000 was published Jun 25, 2024
A maliciously crafted CATPRODUCT file, when parsed in CC5Dll.dll through Autodesk applications,... High Unreviewed
CVE-2024-23148 was published Jun 25, 2024
A maliciously crafted CATPART, X_B and STEP, when parsed in ASMKERN228A.dll and ASMKERN229A.dll... High Unreviewed
CVE-2024-23147 was published Jun 25, 2024
An issue in htop-dev htop v.2.20 allows a local attacker to cause an out-of-bounds access in the... High Unreviewed
CVE-2024-37676 was published Jun 20, 2024
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-35250 was published Jun 11, 2024
Microsoft Streaming Service Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-30090 was published Jun 11, 2024
The issue was addressed with improved memory handling. This issue is fixed in tvOS 17.5, iOS 16.7... High Unreviewed
CVE-2024-27820 was published Jun 10, 2024
The issue was addressed with improved bounds checks. This issue is fixed in tvOS 17.5, visionOS 1... High Unreviewed
CVE-2024-27851 was published Jun 10, 2024
An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in... High Unreviewed
CVE-2024-27857 was published Jun 10, 2024
Kofax Power PDF PDF File Parsing Memory Corruption Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-5306 was published Jun 6, 2024
Denial of Service via Zip/Decompression Bomb sent over HTTP or gRPC High
CVE-2024-36129 was published for go.opentelemetry.io/collector/config/configgrpc (Go) Jun 5, 2024
jpkrohling arminru
mx-psi stamparm
ProTip! Advisories are also available from the GraphQL API