Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,971
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,091
Pub
10
RubyGems
833
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+

3,903 advisories

Loading
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre... High Unreviewed
CVE-2024-37030 was published Jul 2, 2024
Memory corruption while handling user packets during VBO bind operation. High Unreviewed
CVE-2024-23380 was published Jul 1, 2024
Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released. High Unreviewed
CVE-2024-23373 was published Jul 1, 2024
@fastly/js-compute has a use-after-free in some host call implementations Moderate
CVE-2024-38375 was published for @fastly/js-compute (npm) Jun 26, 2024
elliottt
A maliciously crafted IGES file, when parsed in ASMImport229A.dll through Autodesk applications,... Unknown Unreviewed
CVE-2024-23158 was published Jun 25, 2024
A maliciously crafted SLDPRT file, when parsed in ASMKERN229A.dll through Autodesk applications,... Unknown Unreviewed
CVE-2024-37004 was published Jun 25, 2024
A maliciously crafted X_B and X_T file, when parsed in pskernel.DLL through Autodesk applications... Unknown Unreviewed
CVE-2024-37007 was published Jun 25, 2024
A maliciously crafted CATPART, STP, and MODEL file, when parsed in atf_dwg_consumer.dll,... Unknown Unreviewed
CVE-2024-23142 was published Jun 25, 2024
Use after free in Swiftshader in Google Chrome prior to 126.0.6478.126 allowed a remote attacker... Unknown Unreviewed
CVE-2024-6291 was published Jun 25, 2024
Use after free in Dawn in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to... Unknown Unreviewed
CVE-2024-6292 was published Jun 25, 2024
Use after free in Dawn in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to... Unknown Unreviewed
CVE-2024-6290 was published Jun 25, 2024
Use after free in Dawn in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to... Unknown Unreviewed
CVE-2024-6293 was published Jun 25, 2024
Use after free in Dawn in Google Chrome prior to 126.0.6478.114 allowed a remote attacker to... High Unreviewed
CVE-2024-6103 was published Jun 20, 2024
A vulnerability was found in GPAC 2.5-DEV-rev228-g11067ea92-master. It has been declared as... Moderate Unreviewed
CVE-2024-6064 was published Jun 17, 2024
Use after free in Browser UI in Google Chrome prior to 126.0.6478.54 allowed a remote attacker... High Unreviewed
CVE-2024-5842 was published Jun 11, 2024
Use after free in Audio in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to... High Unreviewed
CVE-2024-5845 was published Jun 11, 2024
Use after free in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to... High Unreviewed
CVE-2024-5841 was published Jun 11, 2024
Use after free in PDFium in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to... High Unreviewed
CVE-2024-5846 was published Jun 11, 2024
Use after free in PDFium in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to... High Unreviewed
CVE-2024-5847 was published Jun 11, 2024
Use after free in Dawn in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to... High Unreviewed
CVE-2024-5831 was published Jun 11, 2024
Use after free in Dawn in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to... High Unreviewed
CVE-2024-5832 was published Jun 11, 2024
Microsoft Office Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30101 was published Jun 11, 2024
Microsoft Streaming Service Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-30089 was published Jun 11, 2024
Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-30086 was published Jun 11, 2024
Win32k Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-30082 was published Jun 11, 2024
ProTip! Advisories are also available from the GraphQL API