GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
9,784 advisories
Filter by severity
A third-party vulnerability exists in the Rockwell Automation Arena® that could allow a threat...
High
Unreviewed
CVE-2024-12672
was published
Dec 19, 2024
The L2CAP receive data buffer for L2CAP packets is restricted to packet sizes smaller than the...
Moderate
Unreviewed
CVE-2024-7137
was published
Dec 19, 2024
Acrobat Reader DC version 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012.30205...
High
Unreviewed
CVE-2022-44513
was published
Dec 19, 2024
Acrobat Reader DC version 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012.30205...
High
Unreviewed
CVE-2022-44512
was published
Dec 19, 2024
Out of bounds write in V8 in Google Chrome prior to 131.0.6778.204 allowed a remote attacker to...
Unknown
Unreviewed
CVE-2024-12695
was published
Dec 19, 2024
In dhd_prot_flowrings_pool_release of dhd_msgbuf.c, there is a possible outcof bounds write due...
Critical
Unreviewed
CVE-2024-47038
was published
Dec 18, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of...
High
Unreviewed
CVE-2024-12198
was published
Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of...
High
Unreviewed
CVE-2024-12200
was published
Dec 17, 2024
A maliciously crafted DWF file, when parsed through Autodesk Navisworks, can force an Out-of...
High
Unreviewed
CVE-2024-12192
was published
Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of...
High
Unreviewed
CVE-2024-12191
was published
Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of...
High
Unreviewed
CVE-2024-12197
was published
Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of...
High
Unreviewed
CVE-2024-12193
was published
Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of...
High
Unreviewed
CVE-2024-12199
was published
Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of...
High
Unreviewed
CVE-2024-12671
was published
Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of...
High
Unreviewed
CVE-2024-11422
was published
Dec 17, 2024
Velocidex WinPmem versions below 4.1 suffer from an Out of Bounds Write vulnerability whereby an...
High
Unreviewed
CVE-2024-12668
was published
Dec 16, 2024
The issue was addressed with improved memory handling. This issue is fixed in watchOS 11.2,...
Critical
Unreviewed
CVE-2024-54534
was published
Dec 12, 2024
The issue was addressed with improved memory handling. This issue is fixed in iPadOS 17.7.3,...
High
Unreviewed
CVE-2024-44245
was published
Dec 12, 2024
The issue was addressed with improved bounds checks. This issue is fixed in iOS 18.1 and iPadOS...
Critical
Unreviewed
CVE-2024-44242
was published
Dec 12, 2024
In the Mullvad VPN client 2024.6 (Desktop), 2024.8 (iOS), and 2024.8-beta1 (Android), the...
Critical
Unreviewed
CVE-2024-55884
was published
Dec 12, 2024
A heap-based buffer overflow in IPsec of Ivanti Connect Secure before version 22.7R2.3 allows a...
High
Unreviewed
CVE-2024-37377
was published
Dec 12, 2024
Substance3D - Modeler versions 1.14.1 and earlier are affected by an out-of-bounds write...
High
Unreviewed
CVE-2024-53003
was published
Dec 11, 2024
Substance3D - Modeler versions 1.14.1 and earlier are affected by an out-of-bounds write...
High
Unreviewed
CVE-2024-53001
was published
Dec 11, 2024
Substance3D - Modeler versions 1.14.1 and earlier are affected by an out-of-bounds write...
High
Unreviewed
CVE-2024-53002
was published
Dec 11, 2024
Substance3D - Modeler versions 1.14.1 and earlier are affected by an out-of-bounds write...
High
Unreviewed
CVE-2024-53000
was published
Dec 11, 2024
ProTip!
Advisories are also available from the
GraphQL API