GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,162
Erlang
30
GitHub Actions
19
Go
1,966
Maven
5,000+
npm
3,694
NuGet
653
pip
3,311
Pub
11
RubyGems
881
Rust
831
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
57 advisories
Filter by severity
Ashlar-Vellum Cobalt XE File Parsing Untrusted Pointer Dereference Remote Code Execution...
High
Unreviewed
CVE-2023-34300
was published
May 3, 2024
Ashlar-Vellum Cobalt CO File Parsing Untrusted Pointer Dereference Remote Code Execution...
High
Unreviewed
CVE-2023-34301
was published
May 3, 2024
PDF-XChange Editor EMF File Parsing Untrusted Pointer Dereference Remote Code Execution...
High
Unreviewed
CVE-2023-27342
was published
May 3, 2024
Microsoft Virtual Machine Bus (VMBus) Denial of Service Vulnerability
High
Unreviewed
CVE-2024-26254
was published
Apr 9, 2024
Microsoft Brokering File System Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-26213
was published
Apr 9, 2024
A maliciously crafted STP file when ASMKERN228A.dll parsed through Autodesk AutoCAD can be used...
High
Unreviewed
CVE-2024-23136
was published
Feb 22, 2024
Windows Kernel Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-21338
was published
Feb 13, 2024
Win32k Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-21346
was published
Feb 13, 2024
Memory corruption while reading ACPI config through the user mode app.
High
Unreviewed
CVE-2023-43532
was published
Feb 6, 2024
Memory corruption in video while parsing invalid mp2 clip.
High
Unreviewed
CVE-2023-43518
was published
Feb 6, 2024
AMI’s SPx contains
a vulnerability in the BMC where an Attacker may cause an
untrusted...
High
Unreviewed
CVE-2023-34333
was published
Jan 10, 2024
AMI’s SPx contains
a vulnerability in the BMC where an Attacker
may cause an untrusted...
High
Unreviewed
CVE-2023-34332
was published
Jan 10, 2024
Windows Cryptographic Services Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-20682
was published
Jan 9, 2024
A maliciously crafted STP file when parsed through Autodesk AutoCAD 2024 and 2023 can be used to...
High
Unreviewed
CVE-2023-41139
was published
Nov 23, 2023
The Motorola MTM5000 series firmwares lack pointer validation on arguments passed to trusted...
High
Unreviewed
CVE-2022-26942
was published
Oct 19, 2023
Memory corruption due to untrusted pointer dereference in automotive during system call.
High
Unreviewed
CVE-2023-21643
was published
Aug 8, 2023
NVIDIA Jetson contains a vulnerability in CBoot, where the PCIe controller is initialized...
High
Unreviewed
CVE-2023-25515
was published
Jun 23, 2023
NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer...
High
Unreviewed
CVE-2023-0184
was published
Apr 22, 2023
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer handler...
High
Unreviewed
CVE-2023-0189
was published
Apr 1, 2023
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2022-42418
was published
Jan 26, 2023
GE CIMPICITY versions 2022 and prior is vulnerable when data from faulting address controls code...
High
Unreviewed
CVE-2022-2002
was published
Dec 8, 2022
Measuresoft ScadaPro Server (All Versions) uses unmaintained ActiveX controls. The controls may...
High
Unreviewed
CVE-2022-2894
was published
Sep 1, 2022
This vulnerability allows local attackers to disclose sensitive information on affected...
High
Unreviewed
CVE-2022-34890
was published
Jul 19, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2021-31504
was published
May 24, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2021-31481
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API