Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,298
Erlang
31
GitHub Actions
21
Go
2,063
Maven
5,000+
npm
3,744
NuGet
668
pip
3,424
Pub
12
RubyGems
892
Rust
876
Swift
36
Unreviewed advisories
All unreviewed
5,000+

361 advisories

Loading
The unity-firefox-extension package could be tricked into destroying the Unity webapps context,... Moderate Unreviewed
CVE-2013-1054 was published May 5, 2022
Improper resource shutdown or release in firmware for some Intel(R) SSD, Intel(R) SSD DC, Intel(R... Moderate Unreviewed
CVE-2021-33069 was published May 13, 2022
RSA BSAFE Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) and prior to 4.1.6.1 (in 4.1.x... Moderate Unreviewed
CVE-2018-11055 was published May 13, 2022
An issue was discovered in EMC RSA BSAFE Crypto-J versions prior to 6.2.2. There is an Improper... High Unreviewed
CVE-2016-8212 was published May 13, 2022
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle... High Unreviewed
CVE-2018-8224 was published May 13, 2022
The Web Sockets implementation in Google Chrome before 7.0.517.41 does not properly handle a... High Unreviewed
CVE-2010-4038 was published May 13, 2022
The string component in the GNU C Library (aka glibc or libc6) through 2.28, when running on the... High Unreviewed
CVE-2019-6488 was published May 13, 2022
Exim supports the use of multiple "-p" command line arguments which are malloc()'ed and never... Moderate Unreviewed
CVE-2017-1000369 was published May 13, 2022
Wago 750 Series PLCs with firmware version 10 and prior include a remote attack may take... Moderate Unreviewed
CVE-2018-8836 was published May 13, 2022
A vulnerability in the UDP processing code of Cisco IOS 15.1, 15.2, and 15.4 and IOS XE 3.14... High Unreviewed
CVE-2017-6627 was published May 13, 2022
Logstash versions prior to 2.3.3, when using the Netflow Codec plugin, a remote attacker crafting... High Unreviewed
CVE-2016-10363 was published May 13, 2022
A denial of service vulnerability in the Android media framework (libmediaplayerservice). Product... Moderate Unreviewed
CVE-2017-0733 was published May 13, 2022
A elevation of privilege vulnerability in the Android media framework (libstagefright). Product:... High Unreviewed
CVE-2017-0769 was published May 13, 2022
OpenFlow Plugin and OpenDayLight Controller versions Nitrogen, Carbon, Boron, Robert Varga, Anil... High Unreviewed
CVE-2017-1000411 was published May 13, 2022
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the... High Unreviewed
CVE-2017-11016 was published May 13, 2022
IBM WebSphere MQ 8.0.0.6 does not properly terminate channel agents when they are no longer... High Unreviewed
CVE-2017-1145 was published May 13, 2022
Improper Resource Shutdown or Release in Apache Tomcat High
CVE-2017-5650 was published for org.apache.tomcat:tomcat (Maven) May 13, 2022
sunSUNQ
The KEYS subsystem in the Linux kernel before 4.10.13 allows local users to cause a denial of... Moderate Unreviewed
CVE-2017-7472 was published May 13, 2022
The omninet_open function in drivers/usb/serial/omninet.c in the Linux kernel before 4.10.4... Moderate Unreviewed
CVE-2017-8925 was published May 13, 2022
The NFSv4 implementation in the Linux kernel through 4.11.1 allows local users to cause a denial... Moderate Unreviewed
CVE-2017-9059 was published May 13, 2022
Unisys Stealth 3.3 Windows endpoints before 3.3.016.1 allow local users to gain access to Stealth... High Unreviewed
CVE-2018-6592 was published May 13, 2022
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to... High Unreviewed
CVE-2018-8124 was published May 13, 2022
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to... High Unreviewed
CVE-2018-8120 was published May 13, 2022
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to... High Unreviewed
CVE-2018-8164 was published May 13, 2022
An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver... High Unreviewed
CVE-2018-8165 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database