Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,303
Erlang
31
GitHub Actions
21
Go
2,072
Maven
5,000+
npm
3,744
NuGet
669
pip
3,430
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+

665 advisories

Loading
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can be used to cause a... High Unreviewed
CVE-2024-12179 was published Dec 17, 2024
GStreamer SRT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-37329 was published May 3, 2024
In setParameter of MtpPacket.cpp, there is a possible out of bounds read due to a heap buffer... High Unreviewed
CVE-2024-0040 was published Feb 16, 2024
GStreamer AV1 Codec Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-44429 was published May 3, 2024
In multiple functions of ashmem-dev.cpp, there is a possible missing seal due to a heap buffer... High Unreviewed
CVE-2024-0033 was published Feb 16, 2024
In convertYUV420Planar16ToY410 of ColorConverter.cpp, there is a possible out of bounds write due... High Unreviewed
CVE-2024-0018 was published Feb 16, 2024
Substance3D - Painter versions 10.1.1 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-53957 was published Dec 11, 2024
Premiere Pro versions 25.0, 24.6.3 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-53956 was published Dec 11, 2024
Substance3D - Modeler versions 1.14.1 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-52999 was published Dec 11, 2024
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49089 was published Dec 12, 2024
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49102 was published Dec 12, 2024
Windows Task Scheduler Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-49072 was published Dec 12, 2024
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49086 was published Dec 12, 2024
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49085 was published Dec 12, 2024
Windows IP Routing Management Snapin Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49080 was published Dec 12, 2024
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49125 was published Dec 12, 2024
Windows Common Log File System Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-49138 was published Dec 12, 2024
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49104 was published Dec 12, 2024
Nikon NEF Codec Thumbnail Provider NRW File Parsing Heap-based Buffer Overflow Remote Code... High Unreviewed
CVE-2024-8025 was published Nov 23, 2024
A vulnerability has been identified in Simcenter Nastran 2306 (All versions), Simcenter Nastran... High Unreviewed
CVE-2024-41981 was published Oct 8, 2024
A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 5). The... High Unreviewed
CVE-2024-54094 was published Dec 10, 2024
A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 5). The... High Unreviewed
CVE-2024-54093 was published Dec 10, 2024
A maliciously crafted SKP file, when linked or imported into Autodesk Revit, can be used to cause... High Unreviewed
CVE-2024-11608 was published Dec 9, 2024
The issue was addressed with improved bounds checks. This issue is fixed in watchOS 10.1, macOS... High Unreviewed
CVE-2023-42848 was published Feb 21, 2024
A heap-based memory buffer overflow vulnerability in Rockwell Automation Arena Simulation... High Unreviewed
CVE-2024-21913 was published Mar 26, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database