**GitHub 安全公告(GHSA)** 是针对易受攻击的开源包与生态(如 npm、PyPI、Maven)的权威通告,通常关联 **CVE**。 使用搜索框查找 GHSA 或 CVE,按生态或严重度筛选,或在摘要中匹配短语。
| GHSA | CVE | 严重度 | 类型 | 摘要 | 公开时间 |
|---|---|---|---|---|---|
| GHSA-xvq8-m3ch-hcjv | CVE-2026-47979 | medium | unreviewed | Media Encoder is affected by an out-of-bounds read vulnerability that could lead to disclosure of... | 2026-07-14 21:32:22 UTC |
| GHSA-wq6c-cg2f-6555 | CVE-2026-48272 | high | unreviewed | Creative Cloud Desktop is affected by an Uncontrolled Search Path Element vulnerability that... | 2026-07-14 21:32:22 UTC |
| GHSA-vmgv-gqvj-7p7g | CVE-2026-47976 | high | unreviewed | Media Encoder is affected by an out-of-bounds write vulnerability that could result in arbitrary... | 2026-07-14 21:32:22 UTC |
| GHSA-rvrg-6mx8-rph8 | CVE-2026-47971 | high | unreviewed | Media Encoder is affected by a Stack-based Buffer Overflow vulnerability that could result in... | 2026-07-14 21:32:22 UTC |
| GHSA-jw8p-9pp6-8v63 | CVE-2026-48274 | high | unreviewed | After Effects is affected by an out-of-bounds write vulnerability that could result in arbitrary... | 2026-07-14 21:32:22 UTC |
| GHSA-4vjh-4fjg-5f34 | CVE-2026-48284 | critical | unreviewed | ColdFusion is affected by an Improper Input Validation vulnerability that could result in... | 2026-07-14 21:32:22 UTC |
| GHSA-2xgr-v72x-5hhg | CVE-2026-48270 | high | unreviewed | Premiere Pro is affected by an out-of-bounds write vulnerability that could result in arbitrary... | 2026-07-14 21:32:22 UTC |
| GHSA-2726-9hhx-5r9m | CVE-2026-48269 | high | unreviewed | Premiere Pro is affected by a Heap-based Buffer Overflow vulnerability that could result in... | 2026-07-14 21:32:22 UTC |
| GHSA-vv3c-v9jv-69wx | CVE-2026-24259 | medium | unreviewed | NVIDIA TensorRT-LLM for Linux contains a vulnerability where an attacker could cause missing... | 2026-07-14 21:32:21 UTC |
| GHSA-rjg7-v496-w6mx | CVE-2026-24233 | high | unreviewed | NVIDIA TensorRT-LLM for Linux contains a vulnerability in the restricted unpickler used for model... | 2026-07-14 21:32:21 UTC |
| GHSA-qpx7-r6j6-cqf3 | CVE-2026-15775 | unknown | unreviewed | Inappropriate implementation in V8 in Google Chrome prior to 150.0.7871.125 allowed a remote... | 2026-07-14 21:32:21 UTC |
| GHSA-ph5f-pjvp-h9x6 | CVE-2026-15772 | high | unreviewed | Use after free in GPU in Google Chrome on Android prior to 150.0.7871.125 allowed a remote... | 2026-07-14 21:32:21 UTC |
| GHSA-jqmh-73hw-j5fm | CVE-2026-24234 | medium | unreviewed | NVIDIA TensorRT-LLM for Linux contains a vulnerability in the multimodal media fetching functions... | 2026-07-14 21:32:21 UTC |
| GHSA-jp25-r59g-9p63 | CVE-2026-24272 | high | unreviewed | NVIDIA TensorRT contains a vulnerability where an attacker might cause an overflow to a heap... | 2026-07-14 21:32:21 UTC |
| GHSA-hgvh-mhw9-c77h | CVE-2026-15777 | high | unreviewed | Use after free in UI in Google Chrome on Linux prior to 150.0.7871.125 allowed a remote attacker... | 2026-07-14 21:32:21 UTC |
| GHSA-ggx2-5pvf-g8xh | CVE-2026-15773 | critical | unreviewed | Use after free in Core in Google Chrome on Windows prior to 150.0.7871.125 allowed a remote... | 2026-07-14 21:32:21 UTC |
| GHSA-gc92-vpv6-2c4w | CVE-2026-15778 | unknown | unreviewed | Insufficient validation of untrusted input in Navigation in Google Chrome prior to 150.0.7871.125... | 2026-07-14 21:32:21 UTC |
| GHSA-g9r5-q2vr-2xj3 | CVE-2026-47470 | medium | unreviewed | NVIDIA TensorRT-LLM for any platform contains a vulnerability in the gRPC server chat API... | 2026-07-14 21:32:21 UTC |
| GHSA-g2v9-2grm-8qxj | CVE-2026-47472 | high | unreviewed | NVIDIA TensorRT-LLM contains a vulnerability in its inter-process communication layer where an... | 2026-07-14 21:32:21 UTC |
| GHSA-fvwf-cx56-8x5c | CVE-2026-15774 | high | unreviewed | Use after free in Skia in Google Chrome prior to 150.0.7871.125 allowed a remote attacker who had... | 2026-07-14 21:32:21 UTC |