Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,783
Erlang
36
GitHub Actions
29
Go
2,353
Maven
5,000+
npm
3,977
NuGet
720
pip
3,774
Pub
12
RubyGems
923
Rust
981
Swift
38
Unreviewed advisories
All unreviewed
5,000+

6,627 advisories

Loading
Windows CNG Key Isolation Service Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-41125 was published Nov 10, 2022
Dell PowerEdge Server BIOS contains a heap-based buffer overflow vulnerability. A local high... High Unreviewed
CVE-2024-22453 was published Mar 19, 2024
In Ashlar-Vellum Cobalt versions prior to v12 SP2 Build (1204.200), the affected application... High Unreviewed
CVE-2023-39943 was published Feb 5, 2025
RTI Connext DDS Professional and Connext DDS Secure Versions 4.2.x to 6.1.0 are vulnerable to a... High Unreviewed
CVE-2021-38427 was published May 6, 2022
Memory corruption while configuring a Hypervisor based input virtual device. High Unreviewed
CVE-2024-38420 was published Feb 3, 2025
When BIG-IP Advanced WAF/ASM Behavioral DoS (BADoS) TLS Signatures feature is configured,... High Unreviewed
CVE-2025-24326 was published Feb 5, 2025
A user may be tricked into opening a malicious FBX file that may exploit a stack buffer overflow... High Unreviewed
CVE-2023-27910 was published Jul 6, 2023
A user may be tricked into opening a malicious FBX file that may exploit a heap buffer overflow... High Unreviewed
CVE-2023-27911 was published Jul 6, 2023
A maliciously crafted X_B file when parsed through Autodesk® AutoCAD® 2023 can be used to write... High Unreviewed
CVE-2023-27914 was published Jul 6, 2023
A maliciously crafted X_B file when parsed through Autodesk® AutoCAD® 2023 could lead to memory... High Unreviewed
CVE-2023-27915 was published Jul 6, 2023
Amcrest cameras and NVR are vulnerable to a stack-based buffer overflow over port 37777. An... High Unreviewed
CVE-2020-5735 was published May 24, 2022
A Stack-based Buffer Overflow vulnerability in the Routing Protocol Daemon (RPD) component of... High Unreviewed
CVE-2024-30394 was published Apr 12, 2024
An issue was discovered in Exynos Mobile Processor, Automotive Processor and Modem for Exynos... High Unreviewed
CVE-2023-29091 was published Apr 14, 2023
A vulnerability classified as critical was found in Tenda AC500 2.0.1.9(1307). Affected by this... High Unreviewed
CVE-2024-3909 was published Apr 17, 2024
In binder_transaction of binder.c, there is a possible out of bounds write due to an incorrect... High Unreviewed
CVE-2020-0041 was published May 24, 2022
Out-of-bounds write vulnerability while releasing memory in libsavsac.so prior to SMR Apr-2024... High Unreviewed
CVE-2024-20845 was published Apr 2, 2024
A remote code execution vulnerability exists in the way that the VBScript engine handles objects... High Unreviewed
CVE-2018-8174 was published May 13, 2022
A remote code execution vulnerability exists in the way that the scripting engine handles objects... High Unreviewed
CVE-2020-0968 was published May 24, 2022
A remote code execution vulnerability exists in the way that the scripting engine handles objects... High Unreviewed
CVE-2019-1367 was published May 24, 2022
A remote code execution vulnerability exists in Windows Domain Name System servers when they fail... High Unreviewed
CVE-2020-1350 was published May 24, 2022
Out-of-bounds write vulnerability while parsing remaining codewords in libsavsac.so prior to SMR... High Unreviewed
CVE-2024-20844 was published Apr 2, 2024
Out-of-bound Write vulnerability in chunk parsing implementation of libsdffextractor prior to SMR... High Unreviewed
CVE-2024-20849 was published Apr 2, 2024
A Stack-Based Buffer Overflow vulnerability in Juniper Networks Junos OS and Juniper Networks... High Unreviewed
CVE-2024-39556 was published Jul 11, 2024
ChakraCore RCE Vulnerability High
CVE-2016-7200 was published for Microsoft.ChakraCore (NuGet) May 14, 2022
Adobe Flash Player before 10.3.183.15 and 11.x before 11.1.102.62 on Windows, Mac OS X, Linux,... High Unreviewed
CVE-2012-0754 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database