Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,023
Erlang
29
GitHub Actions
16
Go
1,830
Maven
5,000+
npm
3,573
NuGet
632
pip
3,156
Pub
10
RubyGems
847
Rust
796
Swift
34
Unreviewed advisories
All unreviewed
5,000+

2,097 advisories

Loading
Memory corruption while allocating memory in HGSL driver. High Unreviewed
CVE-2024-33022 was published Aug 5, 2024
Transient DOS while parsing the ML IE when a beacon with length field inside the common info of... High Unreviewed
CVE-2024-33024 was published Aug 5, 2024
Dell BSAFE Crypto-C Micro Edition 4.1.5 and Dell BSAFE Micro Edition Suite, versions 4.0 through... Moderate Unreviewed
CVE-2023-28074 was published Jul 31, 2024
TensorFlow has segfault in array_ops.upper_bound High
CVE-2023-33976 was published for tensorflow (pip) Jul 30, 2024
In the Linux kernel, the following vulnerability has been resolved: media: dvb-frontends:... Moderate Unreviewed
CVE-2024-42223 was published Jul 30, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix potential... Moderate Unreviewed
CVE-2024-42066 was published Jul 29, 2024
An integer overflow vulnerability due to improper input validation when reading TDMS files in... Moderate Unreviewed
CVE-2024-6638 was published Jul 22, 2024
In the vrrp_ipsets_handler handler (fglobal_parser.c) of keepalived through 2.3.1, an integer... Critical Unreviewed
CVE-2024-41184 was published Jul 18, 2024
Fiona affected by CVE-2023-45853 related to MiniZip madler-zlib Critical
GHSA-q5fm-55c2-v6j9 was published for fiona (pip) Jul 16, 2024
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: rndis: prevent... High Unreviewed
CVE-2022-48837 was published Jul 16, 2024
In CacheOpPMRExec of cache_km.c, there is a possible out of bounds write due to an integer... High Unreviewed
CVE-2024-23695 was published Jul 9, 2024
Bridge versions 14.0.4, 13.0.7, 14.1 and earlier are affected by an Integer Overflow or... High Unreviewed
CVE-2024-34139 was published Jul 9, 2024
Windows Hyper-V Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38080 was published Jul 9, 2024
Windows Filtering Platform Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38034 was published Jul 9, 2024
Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38019 was published Jul 9, 2024
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability High Unreviewed
CVE-2024-37336 was published Jul 9, 2024
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability High Unreviewed
CVE-2024-37323 was published Jul 9, 2024
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21428 was published Jul 9, 2024
Secure Boot Security Feature Bypass Vulnerability Moderate Unreviewed
CVE-2024-26184 was published Jul 9, 2024
tap-windows6 driver version 9.26 and earlier does not properly check the size data of incomming... Critical Unreviewed
CVE-2024-1305 was published Jul 8, 2024
An integer overflow vulnerability exists in the boa updateConfigIntoFlash functionality of... High Unreviewed
CVE-2023-45742 was published Jul 8, 2024
Memory corruption while invoking IOCTL call for GPU memory allocation and size param is greater... High Unreviewed
CVE-2024-23372 was published Jul 1, 2024
In wl_notify_rx_mgmt_frame of wl_cfg80211.c, there is a possible out of bounds write due to an... Critical Unreviewed
CVE-2024-32913 was published Jun 13, 2024
In prepare_response of lwis_periodic_io.c, there is a possible out of bounds write due to an... High Unreviewed
CVE-2024-29784 was published Jun 13, 2024
Microsoft Event Trace Log File Parsing Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30072 was published Jun 11, 2024
ProTip! Advisories are also available from the GraphQL API