GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,023
Erlang
29
GitHub Actions
16
Go
1,830
Maven
5,000+
npm
3,573
NuGet
632
pip
3,156
Pub
10
RubyGems
847
Rust
796
Swift
34
Unreviewed advisories
All unreviewed
5,000+
2,097 advisories
Filter by severity
Memory corruption while allocating memory in HGSL driver.
High
Unreviewed
CVE-2024-33022
was published
Aug 5, 2024
Transient DOS while parsing the ML IE when a beacon with length field inside the common info of...
High
Unreviewed
CVE-2024-33024
was published
Aug 5, 2024
Dell BSAFE Crypto-C Micro Edition 4.1.5 and Dell BSAFE Micro Edition Suite, versions 4.0 through...
Moderate
Unreviewed
CVE-2023-28074
was published
Jul 31, 2024
TensorFlow has segfault in array_ops.upper_bound
High
CVE-2023-33976
was published
for
tensorflow
(pip)
Jul 30, 2024
In the Linux kernel, the following vulnerability has been resolved:
media: dvb-frontends:...
Moderate
Unreviewed
CVE-2024-42223
was published
Jul 30, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/xe: Fix potential...
Moderate
Unreviewed
CVE-2024-42066
was published
Jul 29, 2024
An integer overflow vulnerability due to improper input validation when reading TDMS files in...
Moderate
Unreviewed
CVE-2024-6638
was published
Jul 22, 2024
In the vrrp_ipsets_handler handler (fglobal_parser.c) of keepalived through 2.3.1, an integer...
Critical
Unreviewed
CVE-2024-41184
was published
Jul 18, 2024
Fiona affected by CVE-2023-45853 related to MiniZip madler-zlib
Critical
GHSA-q5fm-55c2-v6j9
was published
for
fiona
(pip)
Jul 16, 2024
In the Linux kernel, the following vulnerability has been resolved:
usb: gadget: rndis: prevent...
High
Unreviewed
CVE-2022-48837
was published
Jul 16, 2024
In CacheOpPMRExec of cache_km.c, there is a possible out of bounds write due to an integer...
High
Unreviewed
CVE-2024-23695
was published
Jul 9, 2024
Bridge versions 14.0.4, 13.0.7, 14.1 and earlier are affected by an Integer Overflow or...
High
Unreviewed
CVE-2024-34139
was published
Jul 9, 2024
Windows Hyper-V Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38080
was published
Jul 9, 2024
Windows Filtering Platform Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38034
was published
Jul 9, 2024
Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-38019
was published
Jul 9, 2024
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-37336
was published
Jul 9, 2024
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-37323
was published
Jul 9, 2024
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-21428
was published
Jul 9, 2024
Secure Boot Security Feature Bypass Vulnerability
Moderate
Unreviewed
CVE-2024-26184
was published
Jul 9, 2024
tap-windows6 driver version 9.26 and earlier does not properly
check the size data of incomming...
Critical
Unreviewed
CVE-2024-1305
was published
Jul 8, 2024
An integer overflow vulnerability exists in the boa updateConfigIntoFlash functionality of...
High
Unreviewed
CVE-2023-45742
was published
Jul 8, 2024
Memory corruption while invoking IOCTL call for GPU memory allocation and size param is greater...
High
Unreviewed
CVE-2024-23372
was published
Jul 1, 2024
In wl_notify_rx_mgmt_frame of wl_cfg80211.c, there is a possible out of bounds write due to an...
Critical
Unreviewed
CVE-2024-32913
was published
Jun 13, 2024
In prepare_response of lwis_periodic_io.c, there is a possible out of bounds write due to an...
High
Unreviewed
CVE-2024-29784
was published
Jun 13, 2024
Microsoft Event Trace Log File Parsing Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-30072
was published
Jun 11, 2024
ProTip!
Advisories are also available from the
GraphQL API