Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,293
Erlang
31
GitHub Actions
21
Go
2,061
Maven
5,000+
npm
3,744
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

659 advisories

Loading
Ashlar-Vellum Graphite VC6 File Parsing Heap-based Buffer Overflow Remote Code Execution... High Unreviewed
CVE-2024-13051 was published Dec 30, 2024
Ashlar-Vellum Graphite VC6 File Parsing Heap-based Buffer Overflow Remote Code Execution... High Unreviewed
CVE-2024-13050 was published Dec 30, 2024
GNU GRUB (aka GRUB2) through 2.12 has a heap-based buffer overflow in fs/hfs.c via crafted sblock... High Unreviewed
CVE-2024-56737 was published Dec 29, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can be used to cause a... High Unreviewed
CVE-2024-12669 was published Dec 17, 2024
A maliciously crafted DWF file, when parsed through Autodesk Navisworks, can be used to cause a... High Unreviewed
CVE-2024-12670 was published Dec 17, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can be used to cause a... High Unreviewed
CVE-2024-12179 was published Dec 17, 2024
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49089 was published Dec 12, 2024
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49125 was published Dec 12, 2024
Windows Common Log File System Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-49138 was published Dec 12, 2024
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49104 was published Dec 12, 2024
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49102 was published Dec 12, 2024
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49086 was published Dec 12, 2024
Windows Task Scheduler Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-49072 was published Dec 12, 2024
Windows IP Routing Management Snapin Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49080 was published Dec 12, 2024
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability High Unreviewed
CVE-2024-49085 was published Dec 12, 2024
Substance3D - Modeler versions 1.14.1 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-52999 was published Dec 11, 2024
Premiere Pro versions 25.0, 24.6.3 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-53956 was published Dec 11, 2024
Substance3D - Painter versions 10.1.1 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-53957 was published Dec 11, 2024
Substance3D - Sampler versions 4.5.1 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-52996 was published Dec 10, 2024
InDesign Desktop versions ID19.5, ID18.5.4 and earlier are affected by a Heap-based Buffer... High Unreviewed
CVE-2024-49545 was published Dec 10, 2024
Substance3D - Sampler versions 4.5.1 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-52995 was published Dec 10, 2024
Media Encoder versions 25.0, 24.6.3 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed
CVE-2024-49552 was published Dec 10, 2024
A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 5). The... High Unreviewed
CVE-2024-54094 was published Dec 10, 2024
A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 5). The... High Unreviewed
CVE-2024-54093 was published Dec 10, 2024
A maliciously crafted SKP file, when linked or imported into Autodesk Revit, can be used to cause... High Unreviewed
CVE-2024-11608 was published Dec 9, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database