Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,293
Erlang
31
GitHub Actions
21
Go
2,061
Maven
5,000+
npm
3,744
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

5,921 advisories

Loading
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed
CVE-2024-12197 was published Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed
CVE-2024-11422 was published Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed
CVE-2024-12200 was published Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed
CVE-2024-12193 was published Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed
CVE-2024-12199 was published Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed
CVE-2024-12671 was published Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed
CVE-2024-12198 was published Dec 17, 2024
A maliciously crafted DWF file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed
CVE-2024-12192 was published Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of... High Unreviewed
CVE-2024-12191 was published Dec 17, 2024
GStreamer SRT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-37329 was published May 3, 2024
Configuration defects in the secure OS module.Successful exploitation of this vulnerability will... High Unreviewed
CVE-2022-48486 was published Jun 19, 2023
In setParameter of MtpPacket.cpp, there is a possible out of bounds read due to a heap buffer... High Unreviewed
CVE-2024-0040 was published Feb 16, 2024
GStreamer AV1 Codec Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-44429 was published May 3, 2024
GStreamer AV1 Video Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-50186 was published May 3, 2024
In multiple functions of ashmem-dev.cpp, there is a possible missing seal due to a heap buffer... High Unreviewed
CVE-2024-0033 was published Feb 16, 2024
In convertYUV420Planar16ToY410 of ColorConverter.cpp, there is a possible out of bounds write due... High Unreviewed
CVE-2024-0018 was published Feb 16, 2024
In multiple locations, there is a possible out of bounds write due to a heap buffer overflow.... High Unreviewed
CVE-2024-0049 was published Mar 11, 2024
Velocidex WinPmem versions below 4.1 suffer from an Out of Bounds Write vulnerability whereby an... High Unreviewed
CVE-2024-12668 was published Dec 16, 2024
In the Linux kernel, the following vulnerability has been resolved: initramfs: avoid filename... High Unreviewed
CVE-2024-53142 was published Dec 6, 2024
In multiple functions of MtpPacket.cpp, there is a possible out of bounds write due to a heap... High Unreviewed
CVE-2023-40110 was published Feb 16, 2024
Substance3D - Painter versions 10.1.1 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-53957 was published Dec 11, 2024
Adobe Framemaker versions 2020.7, 2022.5 and earlier are affected by a Stack-based Buffer... High Unreviewed
CVE-2024-53959 was published Dec 11, 2024
Premiere Pro versions 25.0, 24.6.3 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-53956 was published Dec 11, 2024
Improper bounds checking in APCB firmware may allow an attacker to perform an out of bounds write... High Unreviewed
CVE-2022-23815 was published Aug 13, 2024
An out of bounds memory write when processing the AMD PSP1 Configuration Block (APCB) could allow... High Unreviewed
CVE-2021-26344 was published Aug 13, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database