GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
849 advisories
Filter by severity
SQL Server Native Client Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-48998
was published
Nov 12, 2024
SQL Server Native Client Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-48996
was published
Nov 12, 2024
SQL Server Native Client Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-48997
was published
Nov 12, 2024
SQL Server Native Client Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-49012
was published
Nov 12, 2024
Windows Telephony Service Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43621
was published
Nov 12, 2024
Windows Telephony Service Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43620
was published
Nov 12, 2024
SQL Server Native Client Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-38255
was published
Nov 12, 2024
Windows Telephony Service Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43622
was published
Nov 12, 2024
SQL Server Native Client Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43462
was published
Nov 12, 2024
Windows Telephony Service Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43627
was published
Nov 12, 2024
Windows Telephony Service Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-43626
was published
Nov 12, 2024
LightGBM Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43598
was published
Nov 12, 2024
A heap buffer overflow could be triggered by sending a specific packet to TCP port 7700.
Critical
Unreviewed
CVE-2023-29125
was published
Nov 5, 2024
In Eclipse Mosquitto, from version 1.3.2 through 2.0.18, if a malicious broker sends a crafted...
High
Unreviewed
CVE-2024-10525
was published
Oct 30, 2024
A flaw was found in the X.org server. Due to improperly tracked allocation size in...
High
Unreviewed
CVE-2024-9632
was published
Oct 30, 2024
A maliciously crafted MODEL file when parsed in libodxdll.dll through Autodesk AutoCAD can force...
High
Unreviewed
CVE-2024-8594
was published
Oct 30, 2024
A maliciously crafted 3DM file when parsed in AcTranslators.exe through Autodesk AutoCAD can...
High
Unreviewed
CVE-2024-8591
was published
Oct 30, 2024
A maliciously crafted SLDPRT file when parsed in odxsw_dll.dll through Autodesk AutoCAD can force...
High
Unreviewed
CVE-2024-8587
was published
Oct 29, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
Moderate
Unreviewed
CVE-2024-43587
was published
Oct 18, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43578
was published
Oct 18, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43579
was published
Oct 18, 2024
Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to...
High
Unreviewed
CVE-2024-47964
was published
Oct 10, 2024
Substance3D - Stager versions 3.0.3 and earlier are affected by a Heap-based Buffer Overflow...
High
Unreviewed
CVE-2024-45143
was published
Oct 9, 2024
Substance3D - Stager versions 3.0.3 and earlier are affected by a Heap-based Buffer Overflow...
High
Unreviewed
CVE-2024-45139
was published
Oct 9, 2024
Animate versions 23.0.7, 24.0.4 and earlier are affected by a Heap-based Buffer Overflow...
High
Unreviewed
CVE-2024-47417
was published
Oct 9, 2024
ProTip!
Advisories are also available from the
GraphQL API