Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,128
NuGet
735
pip
3,944
Pub
12
RubyGems
945
Rust
1,024
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

135 advisories

Loading
A maliciously crafted CATPRODUCT file, when parsed through Autodesk AutoCAD, can force an... High Unreviewed
CVE-2025-1650 was published Mar 13, 2025
A maliciously crafted CATPRODUCT file, when parsed through Autodesk AutoCAD, can force an... High Unreviewed
CVE-2025-1427 was published Mar 13, 2025
A maliciously crafted CATPRODUCT file, when parsed through Autodesk AutoCAD, can force an... High Unreviewed
CVE-2025-1649 was published Mar 13, 2025
Use of uninitialized resource in Microsoft Office Excel allows an unauthorized attacker to... High Unreviewed
CVE-2025-53759 was published Aug 12, 2025
A flaw was found in the rsync daemon which could be triggered when rsync compares file checksums.... High Unreviewed
CVE-2024-12085 was published Jan 14, 2025
VMware ESXi, Workstation, Fusion, and VMware Tools contains an information disclosure... High Unreviewed
CVE-2025-41239 was published Jul 15, 2025
Use of uninitialized resource in SQL Server allows an unauthorized attacker to disclose... High Unreviewed
CVE-2025-49718 was published Jul 8, 2025
Use of uninitialized resource in Windows Netlogon allows an unauthorized attacker to elevate... High Unreviewed
CVE-2025-33070 was published Jun 10, 2025
PDF-XChange Editor U3D File Parsing Uninitialized Variable Remote Code Execution Vulnerability.... High Unreviewed
CVE-2023-42062 was published May 3, 2024
A maliciously crafted STP file, when parsed in stp_aim_x64_vc15d.dll through Autodesk... High Unreviewed
CVE-2024-23159 was published Jun 25, 2024
A crafted CMS message could have been processed incorrectly, leading to an invalid memory read,... High Unreviewed
CVE-2022-31741 was published Dec 22, 2022
PCRE before 8.38 mishandles the [: and \\ substrings in character classes, which allows remote... High Unreviewed
CVE-2015-8390 was published May 17, 2022
A maliciously crafted STP or SLDPRT file when ODXSW_DLL.dll parsed through Autodesk AutoCAD can... High Unreviewed
CVE-2024-23137 was published Feb 22, 2024
Microsoft Internet Explorer 6 does not properly handle errors related to using the... High Unreviewed
CVE-2008-3475 was published May 2, 2022
Multiple issues including the use of uninitialized ressources [CWE-908] and excessive iteration ... High Unreviewed
CVE-2023-37930 was published Apr 8, 2025
In the Linux kernel, the following vulnerability has been resolved: iio: adc: ti-ads1119: fix... High Unreviewed
CVE-2024-57905 was published Jan 19, 2025
In the Linux kernel, the following vulnerability has been resolved: iio: pressure: zpa2326: fix... High Unreviewed
CVE-2024-57912 was published Jan 19, 2025
In the Linux kernel, the following vulnerability has been resolved: iio: adc: ti-ads8688: fix... High Unreviewed
CVE-2024-57906 was published Jan 19, 2025
In the Linux kernel, the following vulnerability has been resolved: iio: imu: kmx61: fix... High Unreviewed
CVE-2024-57908 was published Jan 19, 2025
In the Linux kernel, the following vulnerability has been resolved: iio: adc: rockchip_saradc:... High Unreviewed
CVE-2024-57907 was published Jan 19, 2025
In the Linux kernel, the following vulnerability has been resolved: iio: light: bh1745: fix... High Unreviewed
CVE-2024-57909 was published Jan 19, 2025
ThroughTek Kalay SDK uses a predictable PSK value in the DTLS session when encountering an... High Unreviewed
CVE-2023-6324 was published May 15, 2024
In the Linux kernel, the following vulnerability has been resolved: crypto: mxs-dcp - Ensure... High Unreviewed
CVE-2024-43815 was published Aug 17, 2024
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix information leak... High Unreviewed
CVE-2024-35849 was published May 17, 2024
In the Linux kernel, the following vulnerability has been resolved: iio: dummy:... High Unreviewed
CVE-2024-57911 was published Jan 19, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database