GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
2,118 advisories
Filter by severity
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: Fix out-of...
High
Unreviewed
CVE-2024-46724
was published
Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved:
HID: cougar: fix slab-out-of...
High
Unreviewed
CVE-2024-46747
was published
Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: fix mc_data out...
High
Unreviewed
CVE-2024-46722
was published
Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: fix ucode out-of...
High
Unreviewed
CVE-2024-46723
was published
Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved:
of/irq: Prevent device...
High
Unreviewed
CVE-2024-46743
was published
Sep 18, 2024
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-38210
was published
Aug 23, 2024
An out-of-bounds read vulnerability exists in the OpenPLC Runtime EtherNet/IP PCCC parser...
High
Unreviewed
CVE-2024-36980
was published
Sep 18, 2024
An out-of-bounds read vulnerability exists in the OpenPLC Runtime EtherNet/IP PCCC parser...
High
Unreviewed
CVE-2024-36981
was published
Sep 18, 2024
Microsoft SQL Server Native Scoring Information Disclosure Vulnerability
High
Unreviewed
CVE-2024-37342
was published
Sep 10, 2024
Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-37338
was published
Sep 10, 2024
Microsoft SQL Server Native Scoring Information Disclosure Vulnerability
High
Unreviewed
CVE-2024-37966
was published
Sep 10, 2024
Windows Remote Access Connection Manager Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38240
was published
Sep 10, 2024
Malicious software running in a guest VM can exploit the buffer overflow to achieve code...
High
Unreviewed
CVE-2024-41928
was published
Sep 5, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/v3d: Fix out-of-bounds...
High
Unreviewed
CVE-2024-44993
was published
Sep 4, 2024
In the Linux kernel, the following vulnerability has been resolved:
tty: serial: qcom-geni...
High
Unreviewed
CVE-2022-48871
was published
Aug 21, 2024
The ctl_request_sense function could expose up to three bytes of the kernel heap to userspace.
...
High
Unreviewed
CVE-2024-43110
was published
Sep 5, 2024
Out-of-bounds write vulnerability in the kernel driver module. Successful exploitation of this...
High
Unreviewed
CVE-2023-46767
was published
Nov 8, 2023
Out-of-bounds write vulnerability in the kernel driver module. Successful exploitation of this...
High
Unreviewed
CVE-2023-46766
was published
Nov 8, 2023
Out-of-bounds write vulnerability in the kernel driver module. Successful exploitation of this...
High
Unreviewed
CVE-2023-46762
was published
Nov 8, 2023
Transient DOS while parsing the multi-link element Control field when common information length...
High
Unreviewed
CVE-2024-33057
was published
Sep 2, 2024
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
High
Unreviewed
CVE-2024-33051
was published
Sep 2, 2024
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length...
High
Unreviewed
CVE-2024-33050
was published
Sep 2, 2024
Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.
High
Unreviewed
CVE-2024-33048
was published
Sep 2, 2024
Memory corruption when the captureRead QDCM command is invoked from user-space.
High
Unreviewed
CVE-2024-33047
was published
Sep 2, 2024
Out-of-bounds access vulnerability in the device authentication module. Successful exploitation...
High
Unreviewed
CVE-2023-44112
was published
Jan 16, 2024
ProTip!
Advisories are also available from the
GraphQL API