Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,145
NuGet
735
pip
3,947
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

11,096 advisories

Loading
Giflib Project v5.2.2 is vulnerable to a heap buffer overflow via gif2rgb. Moderate Unreviewed
CVE-2024-45993 was published Sep 30, 2024
A maliciously crafted DWFX file, when parsed in dwfcore.dll through Autodesk Navisworks, can... High Unreviewed
CVE-2024-7671 was published Sep 30, 2024
A maliciously crafted DWF file, when parsed in dwfcore.dll through Autodesk Navisworks, can force... High Unreviewed
CVE-2024-7672 was published Sep 30, 2024
A maliciously crafted DWF file, when parsed in dwfcore.dll through Autodesk Navisworks, can force... High Unreviewed
CVE-2024-7674 was published Sep 30, 2024
A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, can force... High Unreviewed
CVE-2024-7673 was published Sep 30, 2024
cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_load_png_mem()... High Unreviewed
CVE-2024-46258 was published Oct 1, 2024
cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_unfilter() function at... High Unreviewed
CVE-2024-46259 was published Oct 1, 2024
cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_make32() function at... High Unreviewed
CVE-2024-46261 was published Oct 1, 2024
cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_find() function at... High Unreviewed
CVE-2024-46264 was published Oct 1, 2024
cute_png v1.05 was discovered to contain a stack overflow via the cp_dynamic() function at... High Unreviewed
CVE-2024-46263 was published Oct 1, 2024
cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_block() function at... High Unreviewed
CVE-2024-46267 was published Oct 1, 2024
cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_chunk() function at... High Unreviewed
CVE-2024-46276 was published Oct 1, 2024
cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_stored() function at... High Unreviewed
CVE-2024-46274 was published Oct 1, 2024
A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G,... Moderate Unreviewed
CVE-2024-20518 was published Oct 2, 2024
A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G,... Moderate Unreviewed
CVE-2024-20522 was published Oct 2, 2024
A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G,... Moderate Unreviewed
CVE-2024-20524 was published Oct 2, 2024
A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G,... Moderate Unreviewed
CVE-2024-20523 was published Oct 2, 2024
A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G,... Moderate Unreviewed
CVE-2024-20516 was published Oct 2, 2024
A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G,... Moderate Unreviewed
CVE-2024-20521 was published Oct 2, 2024
A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G,... Moderate Unreviewed
CVE-2024-20519 was published Oct 2, 2024
A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G,... Moderate Unreviewed
CVE-2024-20517 was published Oct 2, 2024
A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G,... Moderate Unreviewed
CVE-2024-20520 was published Oct 2, 2024
Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z... High Unreviewed
CVE-2024-20501 was published Oct 2, 2024
Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z... High Unreviewed
CVE-2024-20499 was published Oct 2, 2024
Out-of-bounds write vulnerability exists in Kostac PLC Programming Software (Former name: Koyo... High Unreviewed
CVE-2024-47134 was published Oct 3, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database