Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,746
Erlang
35
GitHub Actions
29
Go
2,321
Maven
5,000+
npm
3,955
NuGet
712
pip
3,736
Pub
12
RubyGems
921
Rust
972
Swift
38
Unreviewed advisories
All unreviewed
5,000+

824 advisories

Loading
A heap corruption in WhatsApp can be caused by a malformed RTP packet being sent after a call is... High Unreviewed
CVE-2018-6344 was published May 13, 2022
Microsoft Security Advisory CVE-2025-21172 | .NET and Visual Studio Remote Code Execution Vulnerability High
CVE-2025-21172 was published for Microsoft.NetCore.App.Runtime.linux-arm (NuGet) Jan 14, 2025
A maliciously crafted MODEL file, when parsed in atf_asm_interface.dll through Autodesk... High Unreviewed
CVE-2024-23155 was published Jun 25, 2024
[A maliciously crafted 3DM file, when parsed in opennurbs.dll through Autodesk applications, can... High Unreviewed
CVE-2024-37001 was published Jun 25, 2024
A maliciously crafted SKP file, when linked or imported into Autodesk Revit, can be used to cause... High Unreviewed
CVE-2024-11608 was published Dec 9, 2024
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can be used to cause a... High Unreviewed
CVE-2024-12179 was published Dec 17, 2024
A maliciously crafted MODEL file, when parsed through Autodesk AutoCAD, can force a Heap-Based... High Unreviewed
CVE-2025-1651 was published Mar 13, 2025
A maliciously crafted PDF file, when linked or imported into Autodesk applications, can force a... High Unreviewed
CVE-2025-1273 was published Apr 15, 2025
A maliciously crafted PDF file, when linked or imported into Autodesk applications, can force a... High Unreviewed
CVE-2025-1656 was published Apr 15, 2025
A maliciously crafted JPG file, when linked or imported into certain Autodesk applications, can... High Unreviewed
CVE-2025-1275 was published Apr 15, 2025
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can be used to cause a... High Unreviewed
CVE-2024-12669 was published Dec 17, 2024
A maliciously crafted DWF file, when parsed through Autodesk Navisworks, can be used to cause a... High Unreviewed
CVE-2024-12670 was published Dec 17, 2024
A maliciously crafted MODEL file, when parsed through Autodesk AutoCAD, can force a Heap-Based... High Unreviewed
CVE-2025-1429 was published Mar 13, 2025
A maliciously crafted DWG file, when parsed through Autodesk Revit, can cause a Stack-Based... High Unreviewed
CVE-2025-2497 was published Apr 15, 2025
The LCD KVM over IP Switch CL5708IM has a Heap-based Buffer Overflow vulnerability, allowing... High Unreviewed
CVE-2025-3712 was published May 9, 2025
The LCD KVM over IP Switch CL5708IM has a Heap-based Buffer Overflow vulnerability, allowing... High Unreviewed
CVE-2025-3713 was published May 9, 2025
D-Link DIR-X3260 Prog.cgi Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-44418 was published May 3, 2024
A heap overflow flaw was found in X.Org and Xwayland. The computation of the length in... High Unreviewed
CVE-2025-26596 was published Feb 25, 2025
A buffer overflow flaw was found in X.Org and Xwayland. If XkbChangeTypesOfKey() is called with a... High Unreviewed
CVE-2025-26597 was published Feb 25, 2025
An Heap-based Buffer Overflow in RT-Labs P-Net version 1.0.1 or earlier allows an attacker to... High Unreviewed
CVE-2025-32400 was published May 7, 2025
A flaw was found in the X.org server. Due to improperly tracked allocation size in... High Unreviewed
CVE-2024-9632 was published Oct 30, 2024
An Heap-based Buffer Overflow in RT-Labs P-Net version 1.0.1 or earlier allows an attacker to... High Unreviewed
CVE-2025-32397 was published May 7, 2025
An Heap-based Buffer Overflow in RT-Labs P-Net version 1.0.1 or earlier allows an attacker to... High Unreviewed
CVE-2025-32396 was published May 7, 2025
IBM Semeru Runtime 8.0.302.0 through 8.0.442.0, 11.0.12.0 through 11.0.26.0, 17.0.0.0 through 17... High Unreviewed
CVE-2025-2900 was published May 14, 2025
D-Link DIR-3040 HTTP Request Processing Referer Heap-Based Buffer Overflow Remote Code Execution... High Unreviewed
CVE-2023-41229 was published May 3, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database