GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,972
Erlang
29
GitHub Actions
16
Go
1,762
Maven
4,983
npm
3,518
NuGet
609
pip
3,094
Pub
10
RubyGems
833
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
87,228 advisories
Filter by severity
Use after free in Swiftshader in Google Chrome prior to 126.0.6478.126 allowed a remote attacker...
High
Unreviewed
CVE-2024-6291
was published
Jun 25, 2024
A Stack Buffer Overflow vulnerability in zziplibv 0.13.77 allows attackers to cause a denial of...
High
Unreviewed
CVE-2024-39134
was published
Jun 27, 2024
An issue in Nepstech Wifi Router xpon (terminal) NTPL-Xpon1GFEVN, hardware verstion 1.0 firmware...
High
Unreviewed
CVE-2024-37855
was published
Jun 25, 2024
An issue was discovered on HMS Anybus X-Gateway AB7832-F 3 devices. The gateway exposes a web...
High
Unreviewed
CVE-2024-23766
was published
Jun 26, 2024
The XPC service within the audit functionality of Jamf Compliance Editor before version 1.3.1 on...
High
Unreviewed
CVE-2024-4395
was published
Jun 28, 2024
In Modem, there is a possible system crash due to incorrect error handling. This could lead to...
High
Unreviewed
CVE-2024-20076
was published
Jul 1, 2024
In Modem, there is a possible system crash due to incorrect error handling. This could lead to...
High
Unreviewed
CVE-2024-20077
was published
Jul 1, 2024
A maliciously crafted X_B file, when parsed in pskernel.DLL through Autodesk applications, can...
High
Unreviewed
CVE-2024-37000
was published
Jun 25, 2024
[A maliciously crafted 3DM file, when parsed in opennurbs.dll through Autodesk applications, can...
High
Unreviewed
CVE-2024-37001
was published
Jun 25, 2024
A maliciously crafted MODEL file, when parsed in ASMkern229A.dllthrough Autodesk applications,...
High
Unreviewed
CVE-2024-37002
was published
Jun 25, 2024
A maliciously crafted 3DM file, when parsed in opennurbs.dll and ASMkern229A.dll through Autodesk...
High
Unreviewed
CVE-2024-23156
was published
Jun 25, 2024
A maliciously crafted SLDASM or SLDPRT file, when parsed in ODXSW_DLL.dll through Autodesk...
High
Unreviewed
CVE-2024-23157
was published
Jun 25, 2024
A maliciously crafted 3DM file, when parsed in opennurbs.dll through Autodesk applications, can...
High
Unreviewed
CVE-2024-36999
was published
Jun 25, 2024
A maliciously crafted DWG and SLDPRT file, when parsed in opennurbs.dll and ODXSW_DLL.dll through...
High
Unreviewed
CVE-2024-37003
was published
Jun 25, 2024
A maliciously crafted CATPRODUCT file, when parsed in CC5Dll.dll through Autodesk applications,...
High
Unreviewed
CVE-2024-37006
was published
Jun 25, 2024
A maliciously crafted STP file, when parsed in stp_aim_x64_vc15d.dll through Autodesk...
High
Unreviewed
CVE-2024-23159
was published
Jun 25, 2024
The Logo Manager For Enamad WordPress plugin through 0.7.0 does not have CSRF check in some...
High
Unreviewed
CVE-2024-4757
was published
Jun 25, 2024
A maliciously crafted X_B and X_T file, when parsed in pskernel.DLL through Autodesk applications...
High
Unreviewed
CVE-2024-37005
was published
Jun 25, 2024
In the Linux kernel, the following vulnerability has been resolved:
x86/xen: Drop...
High
Unreviewed
CVE-2021-4440
was published
Jun 25, 2024
In the module "Axepta" (axepta) before 1.3.4 from Quadra Informatique for PrestaShop, a guest can...
High
Unreviewed
CVE-2024-34991
was published
Jun 25, 2024
SQL Injection vulnerability in the module "Help Desk - Customer Support Management System" ...
High
Unreviewed
CVE-2024-34992
was published
Jun 25, 2024
A maliciously crafted 3DM and MODEL file, when parsed in opennurbs.dll and atf_api.dll through...
High
Unreviewed
CVE-2024-23140
was published
Jun 25, 2024
Use after free in Dawn in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to...
High
Unreviewed
CVE-2024-6293
was published
Jun 25, 2024
A maliciously crafted 3DM, MODEL and X_B file, when parsed in ASMkern229A.dll and ASMBASE229A.dll...
High
Unreviewed
CVE-2024-23143
was published
Jun 25, 2024
A maliciously crafted PRT file, when parsed in opennurbs.dll through Autodesk applications, can...
High
Unreviewed
CVE-2024-23145
was published
Jun 25, 2024
ProTip!
Advisories are also available from the
GraphQL API