Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,683
Erlang
29
GitHub Actions
16
Go
1,708
Maven
4,944
npm
3,473
NuGet
603
pip
2,995
Pub
10
RubyGems
826
Rust
773
Swift
34
Unreviewed advisories
All unreviewed
5,000+

131 advisories

Windows Remote Access Connection Manager Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-30039 was published May 14, 2024
Information disclosure while parsing dts header atom in Video. Moderate Unreviewed
CVE-2023-43527 was published May 6, 2024
Transient DOS while parsing a protected 802.11az Fine Time Measurement (FTM) frame. High Unreviewed
CVE-2024-21477 was published May 6, 2024
Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream... Moderate Unreviewed
CVE-2023-43528 was published May 6, 2024
Windows Remote Access Connection Manager Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-28900 was published Apr 9, 2024
Windows USB Print Driver Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-26243 was published Apr 9, 2024
Windows Remote Access Connection Manager Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-28901 was published Apr 9, 2024
Windows Remote Access Connection Manager Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-28902 was published Apr 9, 2024
Windows Remote Access Connection Manager Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-26255 was published Apr 9, 2024
A heap-based buffer over-read vulnerability was found in the X.org server's... High Unreviewed
CVE-2024-31082 was published Apr 4, 2024
A heap-based buffer over-read vulnerability was found in the X.org server's... High Unreviewed
CVE-2024-31081 was published Apr 4, 2024
A heap-based buffer over-read vulnerability was found in the X.org server's... High Unreviewed
CVE-2024-31080 was published Apr 4, 2024
Memory corruption while processing buffer initialization, when trusted report for certain report... High Unreviewed
CVE-2023-33115 was published Apr 1, 2024
StringIO buffer overread vulnerability High
CVE-2024-27280 was published for stringio (RubyGems) Mar 25, 2024
Windows Kernel Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-26176 was published Mar 12, 2024
Windows Cloud Files Mini Filter Driver Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-26160 was published Mar 12, 2024
Transient DOS while processing channel information for speaker protection v2 module in ADSP. Moderate Unreviewed
CVE-2023-33090 was published Mar 4, 2024
Transient DOS while processing an improperly formatted 802.11az Fine Time Measurement protocol... High Unreviewed
CVE-2023-43539 was published Mar 4, 2024
Information Disclosure while processing IOCTL request in FastRPC. Moderate Unreviewed
CVE-2023-33078 was published Mar 4, 2024
A denial of service vulnerability exists in the ICMP and ICMPv6 parsing functionality of Weston... Moderate Unreviewed
CVE-2023-39541 was published Feb 20, 2024
A denial of service vulnerability exists in the ICMP and ICMPv6 parsing functionality of Weston... Moderate Unreviewed
CVE-2023-39540 was published Feb 20, 2024
Windows Kernel Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-21340 was published Feb 13, 2024
A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote... High Unreviewed
CVE-2024-20290 was published Feb 7, 2024
Transient DOS in WLAN Firmware when the length of received beacon is less than length of ieee802... High Unreviewed
CVE-2023-43533 was published Feb 6, 2024
Transient DOS while parse fils IE with length equal to 1. High Unreviewed
CVE-2023-43536 was published Feb 6, 2024
ProTip! Advisories are also available from the GraphQL API