Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,096
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,654
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+

2,135 advisories

Loading
An integer overflow vulnerability exists in the Compound Document Binary File format parser of... High Unreviewed
CVE-2024-36474 was published Oct 3, 2024
An integer overflow vulnerability exists in the Compound Document Binary File format parser of v1... High Unreviewed
CVE-2024-42415 was published Oct 3, 2024
A vulnerability in Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to... Moderate Unreviewed
CVE-2024-20434 was published Sep 25, 2024
Integer overflow in Skia in Google Chrome prior to 129.0.6668.70 allowed a remote attacker to... High Unreviewed
CVE-2024-9123 was published Sep 25, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Ensure... Moderate Unreviewed
CVE-2024-46726 was published Sep 18, 2024
An integer overflow was addressed through improved input validation. This issue is fixed in... Moderate Unreviewed
CVE-2024-44198 was published Sep 17, 2024
A Business Logic vulnerability in Shopkit 1.0 allows an attacker to add products with negative... High Unreviewed
CVE-2023-45854 was published Sep 16, 2024
Illustrator versions 28.6, 27.9.5 and earlier are affected by an Integer Overflow or Wraparound... High Unreviewed
CVE-2024-34121 was published Sep 13, 2024
Windows libarchive Remote Code Execution Vulnerability High Unreviewed
CVE-2024-43495 was published Sep 10, 2024
A vulnerability has been identified in Automation License Manager V5 (All versions), Automation... Critical Unreviewed
CVE-2024-44087 was published Sep 10, 2024
A malicious value of size in a structure of packed libnv can cause an integer overflow, leading... Critical Unreviewed
CVE-2024-45287 was published Sep 5, 2024
In the Linux kernel, the following vulnerability has been resolved: workqueue: Fix UBSAN ... Moderate Unreviewed
CVE-2024-44981 was published Sep 4, 2024
Memory corruption while calculating total metadata size when a very high reserved size is... High Unreviewed
CVE-2024-33035 was published Sep 2, 2024
in OpenHarmony v4.1.0 and prior versions allow a local attacker cause crash through integer... Low Unreviewed
CVE-2024-28044 was published Sep 2, 2024
An issue was discovered in libexpat before 2.6.3. nextScaffoldPart in xmlparse.c can have an... High Unreviewed
CVE-2024-45492 was published Aug 30, 2024
An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c can have an integer... High Unreviewed
CVE-2024-45491 was published Aug 30, 2024
In the Linux kernel, the following vulnerability has been resolved: tracing: Fix overflow in... Moderate Unreviewed
CVE-2024-43890 was published Aug 26, 2024
In the Linux kernel, the following vulnerability has been resolved: CDC-NCM: avoid overflow in... Moderate Unreviewed
CVE-2022-48938 was published Aug 22, 2024
An issue in newlib v.4.3.0 allows an attacker to execute arbitrary code via the time unit scaling... Critical Unreviewed
CVE-2024-30949 was published Aug 20, 2024
In attributeBytesBase64 and attributeBytesHex of BinaryXmlSerializer.java, there is a possible... High Unreviewed
CVE-2024-34740 was published Aug 16, 2024
In _MMU_AllocLevel of mmu_common.c, there is a possible arbitrary code execution due to an... High Unreviewed
CVE-2024-31333 was published Aug 16, 2024
In Xpdf 4.05 (and earlier), very large coordinates in a page box can cause an integer overflow... Low Unreviewed
CVE-2024-7867 was published Aug 15, 2024
InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by an Integer Overflow or... High Unreviewed
CVE-2024-41851 was published Aug 14, 2024
Integer overflow in firmware for some Intel(R) CSME may allow an unauthenticated user to... Moderate Unreviewed
CVE-2024-21844 was published Aug 14, 2024
InCopy versions 18.5.2, 19.4 and earlier are affected by an Integer Overflow or Wraparound... High Unreviewed
CVE-2024-41858 was published Aug 14, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database