Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+

849 advisories

Loading
Luxion KeyShot 3DS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability.... High Unreviewed
CVE-2024-11576 was published Nov 22, 2024
Luxion KeyShot ABC File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability.... High Unreviewed
CVE-2024-11580 was published Nov 22, 2024
Heap buffer overflow in Dawn in Google Chrome prior to 125.0.6422.76 allowed a remote attacker to... High Unreviewed
CVE-2024-5160 was published May 22, 2024
Heap buffer overflow in WebAudio in Google Chrome prior to 124.0.6367.155 allowed a remote... High Unreviewed
CVE-2024-4559 was published May 7, 2024
A heap-based buffer overflow vulnerability in the processing of Link Control Protocol messages in... Moderate Unreviewed
CVE-2020-12819 was published Dec 19, 2024
IrfanView XCF Plugin XCF File Parsing Heap-based Buffer Overflow Remote Code Execution... High Unreviewed
CVE-2024-11511 was published Nov 22, 2024
IrfanView PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-6816 was published Nov 22, 2024
InDesign Desktop versions ID19.5, ID18.5.4 and earlier are affected by a Heap-based Buffer... High Unreviewed
CVE-2024-49545 was published Dec 10, 2024
Substance3D - Sampler versions 4.5.1 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-52995 was published Dec 10, 2024
Media Encoder versions 25.0, 24.6.3 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-49552 was published Dec 10, 2024
Substance3D - Sampler versions 4.5.1 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-52996 was published Dec 10, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can be used to cause a... High Unreviewed
CVE-2024-12669 was published Dec 17, 2024
A maliciously crafted DWF file, when parsed through Autodesk Navisworks, can be used to cause a... High Unreviewed
CVE-2024-12670 was published Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can be used to cause a... High Unreviewed
CVE-2024-12179 was published Dec 17, 2024
GStreamer SRT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-37329 was published May 3, 2024
In convertYUV420Planar16ToY410 of ColorConverter.cpp, there is a possible out of bounds write due... High Unreviewed
CVE-2024-0018 was published Feb 16, 2024
GStreamer AV1 Codec Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-44429 was published May 3, 2024
In setParameter of MtpPacket.cpp, there is a possible out of bounds read due to a heap buffer... High Unreviewed
CVE-2024-0040 was published Feb 16, 2024
In multiple functions of ashmem-dev.cpp, there is a possible missing seal due to a heap buffer... High Unreviewed
CVE-2024-0033 was published Feb 16, 2024
A vulnerability has been identified in Opcenter Execution Foundation (All versions), Opcenter... Critical Unreviewed
CVE-2024-49775 was published Dec 16, 2024
Substance3D - Painter versions 10.1.1 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-53957 was published Dec 11, 2024
Premiere Pro versions 25.0, 24.6.3 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-53956 was published Dec 11, 2024
Substance3D - Modeler versions 1.14.1 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-52999 was published Dec 11, 2024
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49102 was published Dec 12, 2024
Wireless Wide Area Network Service (WwanSvc) Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2024-49094 was published Dec 12, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database