GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
78 advisories
Filter by severity
Windows Common Log File System Driver Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-49090
was published
Dec 12, 2024
Memory corruption when PAL client calls PAL service APIs by passing a random value as handle and...
Moderate
Unreviewed
CVE-2024-33039
was published
Dec 2, 2024
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2022-42396
was published
Jan 26, 2023
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2022-42418
was published
Jan 26, 2023
Untrusted pointer dereference in some Intel(R) Graphics Drivers may allow an authenticated user...
Moderate
Unreviewed
CVE-2024-34023
was published
Nov 13, 2024
Windows Secure Kernel Mode Elevation of Privilege Vulnerability
Moderate
Unreviewed
CVE-2024-43646
was published
Nov 12, 2024
Windows Secure Kernel Mode Elevation of Privilege Vulnerability
Moderate
Unreviewed
CVE-2024-43631
was published
Nov 12, 2024
Windows DWM Core Library Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-43629
was published
Nov 12, 2024
Win32k Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-43636
was published
Nov 12, 2024
Windows Hyper-V Shared Virtual Disk Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-43624
was published
Nov 12, 2024
A memory corruption vulnerability in HddPassword in Insyde InsydeH2O kernel 5.2 before 05.29.09,...
High
Unreviewed
CVE-2024-25079
was published
May 15, 2024
Memory corruption when a compat IOCTL call is followed by another IOCTL call from userspace to a...
High
Unreviewed
CVE-2024-21455
was published
Oct 7, 2024
NT OS Kernel Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-43553
was published
Oct 8, 2024
Windows Secure Kernel Mode Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-43516
was published
Oct 8, 2024
Windows Print Spooler Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-43529
was published
Oct 8, 2024
Windows Kernel Elevation of Privilege Vulnerability
Moderate
Unreviewed
CVE-2024-37979
was published
Oct 8, 2024
Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability
Moderate
Unreviewed
CVE-2024-37982
was published
Oct 8, 2024
Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability
Moderate
Unreviewed
CVE-2024-37983
was published
Oct 8, 2024
Untrusted pointer dereference in UEFI firmware for some Intel(R) reference processors may allow a...
High
Unreviewed
CVE-2023-42772
was published
Sep 16, 2024
Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-37339
was published
Sep 10, 2024
Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-37340
was published
Sep 10, 2024
Memory corruption while passing untrusted/corrupted pointers from DSP to EVA.
High
Unreviewed
CVE-2024-33038
was published
Sep 2, 2024
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38187
was published
Aug 13, 2024
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38185
was published
Aug 13, 2024
Within Zabbix, users have the ability to directly modify memory pointers in the JavaScript engine.
Critical
Unreviewed
CVE-2024-36461
was published
Aug 12, 2024
ProTip!
Advisories are also available from the
GraphQL API