GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
5,231 advisories
Filter by severity
A maliciously crafted PDF file, when parsed through Autodesk Revit, can force an Out-of-Bounds...
High
Unreviewed
CVE-2024-7993
was published
Oct 17, 2024
Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to...
High
Unreviewed
CVE-2024-47964
was published
Oct 10, 2024
Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to...
High
Unreviewed
CVE-2024-47962
was published
Oct 10, 2024
Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can result in a...
High
Unreviewed
CVE-2024-47963
was published
Oct 10, 2024
A memory corruption vulnerability in Palo Alto Networks PAN-OS software allows an unauthenticated...
High
Unreviewed
CVE-2024-9468
was published
Oct 9, 2024
Substance3D - Stager versions 3.0.3 and earlier are affected by an out-of-bounds write...
High
Unreviewed
CVE-2024-45152
was published
Oct 9, 2024
Substance3D - Stager versions 3.0.3 and earlier are affected by a Heap-based Buffer Overflow...
High
Unreviewed
CVE-2024-45143
was published
Oct 9, 2024
Substance3D - Stager versions 3.0.3 and earlier are affected by an out-of-bounds write...
High
Unreviewed
CVE-2024-45144
was published
Oct 9, 2024
Substance3D - Stager versions 3.0.3 and earlier are affected by an out-of-bounds write...
High
Unreviewed
CVE-2024-45140
was published
Oct 9, 2024
Substance3D - Stager versions 3.0.3 and earlier are affected by a Heap-based Buffer Overflow...
High
Unreviewed
CVE-2024-45139
was published
Oct 9, 2024
Substance3D - Stager versions 3.0.3 and earlier are affected by an out-of-bounds write...
High
Unreviewed
CVE-2024-45141
was published
Oct 9, 2024
Animate versions 23.0.7, 24.0.4 and earlier are affected by a Heap-based Buffer Overflow...
High
Unreviewed
CVE-2024-47417
was published
Oct 9, 2024
Animate versions 23.0.7, 24.0.4 and earlier are affected by a Stack-based Buffer Overflow...
High
Unreviewed
CVE-2024-47410
was published
Oct 9, 2024
Dimension versions 4.0.3 and earlier are affected by an out-of-bounds write vulnerability that...
High
Unreviewed
CVE-2024-45150
was published
Oct 9, 2024
Type Confusion in V8 in Google Chrome prior to 129.0.6668.100 allowed a remote attacker to...
High
Unreviewed
CVE-2024-9602
was published
Oct 9, 2024
A vulnerability has been identified in Tecnomatix Plant Simulation V2302 (All versions < V2302...
High
Unreviewed
CVE-2024-45469
was published
Oct 8, 2024
A vulnerability has been identified in Tecnomatix Plant Simulation V2302 (All versions < V2302...
High
Unreviewed
CVE-2024-45470
was published
Oct 8, 2024
A vulnerability has been identified in Tecnomatix Plant Simulation V2302 (All versions < V2302...
High
Unreviewed
CVE-2024-45471
was published
Oct 8, 2024
In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead...
High
Unreviewed
CVE-2024-20092
was published
Oct 7, 2024
Out-of-bounds write vulnerability exists in Kostac PLC Programming Software (Former name: Koyo...
High
Unreviewed
CVE-2024-47134
was published
Oct 3, 2024
Stack-based buffer overflow vulnerability exists in Kostac PLC Programming Software (Former name:...
High
Unreviewed
CVE-2024-47135
was published
Oct 3, 2024
Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z...
High
Unreviewed
CVE-2024-20499
was published
Oct 2, 2024
Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z...
High
Unreviewed
CVE-2024-20501
was published
Oct 2, 2024
cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_chunk() function at...
High
Unreviewed
CVE-2024-46276
was published
Oct 1, 2024
cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_stored() function at...
High
Unreviewed
CVE-2024-46274
was published
Oct 1, 2024
ProTip!
Advisories are also available from the
GraphQL API