Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,067
Erlang
29
GitHub Actions
19
Go
1,891
Maven
5,000+
npm
3,624
NuGet
638
pip
3,235
Pub
10
RubyGems
857
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

5,462 advisories

Loading
Out-of-bounds read in UEFI firmware for some Intel(R) Processors may allow a privileged user to... Low Unreviewed
CVE-2023-25546 was published Sep 16, 2024
After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds read... Moderate Unreviewed
CVE-2024-39382 was published Sep 13, 2024
Illustrator versions 28.6, 27.9.5 and earlier are affected by an out-of-bounds read vulnerability... Moderate Unreviewed
CVE-2024-45111 was published Sep 13, 2024
After Effects versions 23.6.6, 24.5 and earlier are affected by a Stack-based Buffer Overflow... Moderate Unreviewed
CVE-2024-41867 was published Sep 13, 2024
Media Encoder versions 24.5, 23.6.8 and earlier are affected by an out-of-bounds read... Moderate Unreviewed
CVE-2024-41872 was published Sep 13, 2024
Media Encoder versions 24.5, 23.6.8 and earlier are affected by an out-of-bounds read... Moderate Unreviewed
CVE-2024-41873 was published Sep 13, 2024
Media Encoder versions 24.5, 23.6.8 and earlier are affected by an out-of-bounds read... Moderate Unreviewed
CVE-2024-41871 was published Sep 13, 2024
Media Encoder versions 24.5, 23.6.8 and earlier are affected by an out-of-bounds read... Moderate Unreviewed
CVE-2024-41870 was published Sep 13, 2024
Audition versions 24.4.1, 23.6.6 and earlier are affected by an out-of-bounds read vulnerability... Moderate Unreviewed
CVE-2024-41868 was published Sep 11, 2024
Windows Remote Access Connection Manager Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38240 was published Sep 10, 2024
Microsoft SQL Server Native Scoring Information Disclosure Vulnerability High Unreviewed
CVE-2024-37342 was published Sep 10, 2024
Microsoft SQL Server Native Scoring Information Disclosure Vulnerability High Unreviewed
CVE-2024-37966 was published Sep 10, 2024
Out-of-Bounds read vulnerability in OSCAT Basic Library allows an local, unprivileged attacker to... Moderate Unreviewed
CVE-2024-6876 was published Sep 10, 2024
Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability High Unreviewed
CVE-2024-37338 was published Sep 10, 2024
An issue was discovered in Samsung Mobile Processor, Wearable Processor Exynos Exynos 980, Exynos... Moderate Unreviewed
CVE-2024-27366 was published Sep 9, 2024
An issue was discovered in Samsung Mobile Processor Exynos Wearable Processor Exynos 980, Exynos... Moderate Unreviewed
CVE-2024-27367 was published Sep 9, 2024
An issue was discovered in Samsung Mobile Processor Exynos Mobile Processor, Wearable Processor... Moderate Unreviewed
CVE-2024-27368 was published Sep 9, 2024
An issue was discovered in Mobile Processor, Wearable Processor Exynos 980, Exynos 850, Exynos... Moderate Unreviewed
CVE-2024-27364 was published Sep 9, 2024
The ctl_request_sense function could expose up to three bytes of the kernel heap to userspace. ... High Unreviewed
CVE-2024-43110 was published Sep 5, 2024
Malicious software running in a guest VM can exploit the buffer overflow to achieve code... High Unreviewed
CVE-2024-41928 was published Sep 5, 2024
A vulnerability in the PDF parsing module of Clam AntiVirus (ClamAV) versions 1.4.0, 1.3.2 and... Moderate Unreviewed
CVE-2024-20505 was published Sep 5, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Fix out-of-bounds... High Unreviewed
CVE-2024-44993 was published Sep 4, 2024
Out-of-bounds read in Samsung Notes allows local attackers to bypass ASLR. Moderate Unreviewed
CVE-2024-34658 was published Sep 4, 2024
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length... High Unreviewed
CVE-2024-33050 was published Sep 2, 2024
Transient DOS while parsing the multi-link element Control field when common information length... High Unreviewed
CVE-2024-33057 was published Sep 2, 2024
ProTip! Advisories are also available from the GraphQL API