Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

9,388 advisories

Loading
A third-party vulnerability exists in the Rockwell Automation Arena® that could allow a threat... High Unreviewed
CVE-2024-12672 was published Dec 19, 2024
The L2CAP receive data buffer for L2CAP packets is restricted to packet sizes smaller than the... Moderate Unreviewed
CVE-2024-7137 was published Dec 19, 2024
Acrobat Reader DC version 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012.30205... High Unreviewed
CVE-2022-44513 was published Dec 19, 2024
Acrobat Reader DC version 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012.30205... High Unreviewed
CVE-2022-44512 was published Dec 19, 2024
Out of bounds write in V8 in Google Chrome prior to 131.0.6778.204 allowed a remote attacker to... Unknown Unreviewed
CVE-2024-12695 was published Dec 19, 2024
In dhd_prot_flowrings_pool_release of dhd_msgbuf.c, there is a possible outcof bounds write due... Critical Unreviewed
CVE-2024-47038 was published Dec 18, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed
CVE-2024-11422 was published Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed
CVE-2024-12198 was published Dec 17, 2024
A maliciously crafted DWF file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed
CVE-2024-12192 was published Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed
CVE-2024-12199 was published Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed
CVE-2024-12191 was published Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed
CVE-2024-12197 was published Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed
CVE-2024-12193 was published Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed
CVE-2024-12200 was published Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed
CVE-2024-12671 was published Dec 17, 2024
Velocidex WinPmem versions below 4.1 suffer from an Out of Bounds Write vulnerability whereby an... High Unreviewed
CVE-2024-12668 was published Dec 16, 2024
The issue was addressed with improved memory handling. This issue is fixed in watchOS 11.2,... Critical Unreviewed
CVE-2024-54534 was published Dec 12, 2024
The issue was addressed with improved memory handling. This issue is fixed in iPadOS 17.7.3,... High Unreviewed
CVE-2024-44245 was published Dec 12, 2024
The issue was addressed with improved bounds checks. This issue is fixed in iOS 18.1 and iPadOS... Critical Unreviewed
CVE-2024-44242 was published Dec 12, 2024
In the Mullvad VPN client 2024.6 (Desktop), 2024.8 (iOS), and 2024.8-beta1 (Android), the... Critical Unreviewed
CVE-2024-55884 was published Dec 12, 2024
A heap-based buffer overflow in IPsec of Ivanti Connect Secure before version 22.7R2.3 allows a... High Unreviewed
CVE-2024-37377 was published Dec 12, 2024
Substance3D - Modeler versions 1.14.1 and earlier are affected by an out-of-bounds write... High Unreviewed
CVE-2024-53003 was published Dec 11, 2024
Substance3D - Modeler versions 1.14.1 and earlier are affected by an out-of-bounds write... High Unreviewed
CVE-2024-53001 was published Dec 11, 2024
Substance3D - Modeler versions 1.14.1 and earlier are affected by an out-of-bounds write... High Unreviewed
CVE-2024-53002 was published Dec 11, 2024
Substance3D - Modeler versions 1.14.1 and earlier are affected by an out-of-bounds write... High Unreviewed
CVE-2024-53000 was published Dec 11, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database