Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,693
Erlang
34
GitHub Actions
28
Go
2,283
Maven
5,000+
npm
3,934
NuGet
708
pip
3,702
Pub
12
RubyGems
919
Rust
959
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

129 advisories

Loading
A maliciously crafted CATPRODUCT file, when parsed through Autodesk AutoCAD, can force an... High Unreviewed
CVE-2025-1427 was published Mar 13, 2025
A maliciously crafted CATPRODUCT file, when parsed through Autodesk AutoCAD, can force an... High Unreviewed
CVE-2025-1650 was published Mar 13, 2025
A maliciously crafted CATPRODUCT file, when parsed through Autodesk AutoCAD, can force an... High Unreviewed
CVE-2025-1649 was published Mar 13, 2025
A maliciously crafted STP file, when parsed in stp_aim_x64_vc15d.dll through Autodesk... High Unreviewed
CVE-2024-23159 was published Jun 25, 2024
A crafted CMS message could have been processed incorrectly, leading to an invalid memory read,... High Unreviewed
CVE-2022-31741 was published Dec 22, 2022
PCRE before 8.38 mishandles the [: and \\ substrings in character classes, which allows remote... High Unreviewed
CVE-2015-8390 was published May 17, 2022
A maliciously crafted STP or SLDPRT file when ODXSW_DLL.dll parsed through Autodesk AutoCAD can... High Unreviewed
CVE-2024-23137 was published Feb 22, 2024
Microsoft Internet Explorer 6 does not properly handle errors related to using the... High Unreviewed
CVE-2008-3475 was published May 2, 2022
Multiple issues including the use of uninitialized ressources [CWE-908] and excessive iteration ... High Unreviewed
CVE-2023-37930 was published Apr 8, 2025
In the Linux kernel, the following vulnerability has been resolved: iio: adc: rockchip_saradc:... High Unreviewed
CVE-2024-57907 was published Jan 19, 2025
In the Linux kernel, the following vulnerability has been resolved: iio: adc: ti-ads8688: fix... High Unreviewed
CVE-2024-57906 was published Jan 19, 2025
In the Linux kernel, the following vulnerability has been resolved: iio: light: bh1745: fix... High Unreviewed
CVE-2024-57909 was published Jan 19, 2025
In the Linux kernel, the following vulnerability has been resolved: iio: adc: ti-ads1119: fix... High Unreviewed
CVE-2024-57905 was published Jan 19, 2025
In the Linux kernel, the following vulnerability has been resolved: iio: pressure: zpa2326: fix... High Unreviewed
CVE-2024-57912 was published Jan 19, 2025
In the Linux kernel, the following vulnerability has been resolved: iio: imu: kmx61: fix... High Unreviewed
CVE-2024-57908 was published Jan 19, 2025
ThroughTek Kalay SDK uses a predictable PSK value in the DTLS session when encountering an... High Unreviewed
CVE-2023-6324 was published May 15, 2024
In the Linux kernel, the following vulnerability has been resolved: crypto: mxs-dcp - Ensure... High Unreviewed
CVE-2024-43815 was published Aug 17, 2024
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix information leak... High Unreviewed
CVE-2024-35849 was published May 17, 2024
In the Linux kernel, the following vulnerability has been resolved: iio: light: vcnl4035: fix... High Unreviewed
CVE-2024-57910 was published Jan 19, 2025
In the Linux kernel, the following vulnerability has been resolved: iio: dummy:... High Unreviewed
CVE-2024-57911 was published Jan 19, 2025
In the Linux kernel, the following vulnerability has been resolved: asix: fix uninit-value in... High Unreviewed
CVE-2021-47101 was published Mar 4, 2024
Another “uninitialized variable” code execution vulnerability exists in the Rockwell Automation... High Unreviewed
CVE-2024-11364 was published Dec 19, 2024
Microsoft Message Queuing Information Disclosure Vulnerability High Unreviewed
CVE-2025-21220 was published Jan 14, 2025
An uninitialized resource in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6... High Unreviewed
CVE-2024-13164 was published Jan 14, 2025
Information disclosure due to uninitialized variable. High Unreviewed
CVE-2017-18306 was published Nov 26, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database