Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

707 advisories

Loading
A heap overflow flaw was found in 389-ds-base. This issue leads to a denial of service when... Moderate Unreviewed
CVE-2024-1062 was published Feb 12, 2024
HDF5 Library through 1.14.3 contains a heap-based buffer over-read caused by the unsafe use of... High Unreviewed
CVE-2024-32617 was published May 14, 2024
HDF5 Library through 1.14.3 contains a heap-based buffer overflow in H5HG_read in H5HG.c (called... Critical Unreviewed
CVE-2024-32621 was published May 14, 2024
oFono SimToolKit Heap-based Buffer Overflow Privilege Escalation Vulnerability. This... High Unreviewed
CVE-2024-7544 was published Aug 6, 2024
oFono SimToolKit Heap-based Buffer Overflow Privilege Escalation Vulnerability. This... High Unreviewed
CVE-2024-7543 was published Aug 6, 2024
Heap-based buffer overflow vulnerability in the SonicOS SSL-VPN allows an authenticated remote... Moderate Unreviewed
CVE-2024-29013 was published Jun 20, 2024
oFono SimToolKit Heap-based Buffer Overflow Privilege Escalation Vulnerability. This... High Unreviewed
CVE-2024-7545 was published Aug 6, 2024
InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by a Heap-based Buffer... High Unreviewed
CVE-2024-41853 was published Aug 14, 2024
InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by a Heap-based Buffer... High Unreviewed
CVE-2024-41850 was published Aug 14, 2024
An issue in the imlib_free_image_and_decache function of imlib2 v1.9.1 allows attackers to cause... High Unreviewed
CVE-2024-25448 was published Feb 9, 2024
In multiple functions of ashmem-dev.cpp, there is a possible missing seal due to a heap buffer... High Unreviewed
CVE-2024-0033 was published Feb 16, 2024
HDF5 through 1.14.3 contains a heap buffer overflow in H5HG_read, resulting in the corruption of... Critical Unreviewed
CVE-2024-29157 was published May 14, 2024
A heap-based buffer overflow vulnerability exists in the FOXMAN-UN/UNEM that if exploited will... High Unreviewed
CVE-2024-2011 was published Jun 11, 2024
In convertYUV420Planar16ToY410 of ColorConverter.cpp, there is a possible out of bounds write due... High Unreviewed
CVE-2024-0018 was published Feb 16, 2024
An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos... Moderate Unreviewed
CVE-2024-27372 was published Jun 5, 2024
Windows Common Log File System Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2023-23376 was published Feb 14, 2023
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2023-36036 was published Nov 14, 2023
Windows OLE Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38152 was published Aug 13, 2024
Windows IP Routing Management Snapin Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38116 was published Aug 13, 2024
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38121 was published Aug 13, 2024
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38120 was published Aug 13, 2024
Windows Network Virtualization Remote Code Execution Vulnerability Critical Unreviewed
CVE-2024-38160 was published Aug 13, 2024
Windows IP Routing Management Snapin Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38114 was published Aug 13, 2024
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38130 was published Aug 13, 2024
Microsoft Office Visio Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38169 was published Aug 13, 2024
ProTip! Advisories are also available from the GraphQL API