GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,971
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,091
Pub
10
RubyGems
833
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
87,216 advisories
Filter by severity
A maliciously crafted X_B and X_T file, when parsed in pskernel.DLL through Autodesk applications...
High
Unreviewed
CVE-2024-23146
was published
Jun 25, 2024
A maliciously crafted SLDPRT file, when parsed in ASMKERN229A.dll through Autodesk applications,...
High
Unreviewed
CVE-2024-37004
was published
Jun 25, 2024
A maliciously crafted MODEL file, when parsed in libodxdll through Autodesk applications, can...
High
Unreviewed
CVE-2024-23141
was published
Jun 25, 2024
A maliciously crafted X_B and X_T file, when parsed in pskernel.DLL through Autodesk applications...
High
Unreviewed
CVE-2024-37007
was published
Jun 25, 2024
An issue in Shenzhen Weitillage Industrial Co., Ltd the access management specialist V6.62.51215...
High
Unreviewed
CVE-2024-37677
was published
Jun 24, 2024
Buffer Overflow Vulnerability in libcdio v2.1.0 allows an attacker to execute arbitrary code via...
High
Unreviewed
CVE-2024-36600
was published
Jun 14, 2024
In dhd_prot_txstatus_process of dhd_msgbuf.c, there is a possible out of bounds write due to a...
High
Unreviewed
CVE-2024-32925
was published
Jun 13, 2024
Daily Expenses Management System version 1.0, developed by PHP Gurukul, contains a time-based...
High
Unreviewed
CVE-2024-29390
was published
Jun 20, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: Fix possible...
High
Unreviewed
CVE-2023-52883
was published
Jun 20, 2024
The Kiuwan Local Analyzer (KLA) Java scanning application contains several
hard-coded secrets in...
High
Unreviewed
CVE-2023-49113
was published
Jun 20, 2024
In the Linux kernel, the following vulnerability has been resolved:
phylib: fix potential use...
High
Unreviewed
CVE-2022-48754
was published
Jun 20, 2024
Northern.tech Mender 3.3.x before 3.3.2, 3.5.x before 3.5.0, and 3.6.x before 3.6.0 has Incorrect...
High
Unreviewed
CVE-2022-45929
was published
Jun 20, 2024
In the Linux kernel, the following vulnerability has been resolved:
block: Fix wrong offset in...
High
Unreviewed
CVE-2022-48747
was published
Jun 20, 2024
When the Kiuwan Local Analyzer uploads the scan results to the Kiuwan SAST web
application ...
High
Unreviewed
CVE-2023-49110
was published
Jun 20, 2024
A command injection issue in TOTOLINK A6000R V1.0.1-B20201211.2000 firmware allows a remote...
High
Unreviewed
CVE-2024-37626
was published
Jun 20, 2024
In the Linux kernel, the following vulnerability has been resolved:
net: bridge: vlan: fix...
High
Unreviewed
CVE-2022-48748
was published
Jun 20, 2024
Out of bounds memory access in Dawn in Google Chrome prior to 126.0.6478.114 allowed a remote...
High
Unreviewed
CVE-2024-6102
was published
Jun 20, 2024
Inappropriate implementation in V8 in Google Chrome prior to 126.0.6478.114 allowed a remote...
High
Unreviewed
CVE-2024-6101
was published
Jun 20, 2024
The Advanced Custom Fields (ACF) WordPress plugin before 6.3, Advanced Custom Fields Pro...
High
Unreviewed
CVE-2024-4565
was published
Jun 20, 2024
In the module "Facebook" (pkfacebook) <=1.0.1 from Promokit.eu for PrestaShop, a guest can...
High
Unreviewed
CVE-2024-36680
was published
Jun 19, 2024
In the module "Login as customer PRO" (loginascustomerpro) <1.2.7 from Weblir for PrestaShop, a...
High
Unreviewed
CVE-2024-36677
was published
Jun 19, 2024
ALCASAR before 3.6.1 allows CSRF and remote code execution in activity.php.
High
Unreviewed
CVE-2024-38293
was published
Jun 13, 2024
In the Linux kernel, the following vulnerability has been resolved:
wifi: carl9170: re-fix...
High
Unreviewed
CVE-2024-38616
was published
Jun 19, 2024
In the Linux kernel, the following vulnerability has been resolved:
cppc_cpufreq: Fix possible...
High
Unreviewed
CVE-2024-38573
was published
Jun 19, 2024
CORSAIR iCUE 5.9.105 with iCUE Murals on Windows allows unprivileged users to insert DLL files in...
High
Unreviewed
CVE-2024-22002
was published
Jun 18, 2024
ProTip!
Advisories are also available from the
GraphQL API