Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
21
Go
2,003
Maven
5,000+
npm
3,714
NuGet
661
pip
3,387
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

338 advisories

Loading
A vulnerability, which was classified as problematic, has been found in Linux Kernel. This issue... Moderate Unreviewed
CVE-2022-3646 was published Oct 21, 2022
RSA BSAFE Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) and prior to 4.1.6.1 (in 4.1.x... Moderate Unreviewed
CVE-2018-11055 was published May 13, 2022
An issue was discovered in EMC RSA BSAFE Crypto-J versions prior to 6.2.2. There is an Improper... High Unreviewed
CVE-2016-8212 was published May 13, 2022
A vulnerability classified as problematic has been found in TP-Link TL-WR740N. Affected is an... Moderate Unreviewed
CVE-2022-4296 was published Dec 6, 2022
A vulnerability classified as problematic has been found in Axiomatic Bento4. This affects an... Moderate Unreviewed
CVE-2022-3813 was published Nov 2, 2022
A vulnerability was found in Axiomatic Bento4 and classified as problematic. Affected by this... Moderate Unreviewed
CVE-2022-3809 was published Nov 2, 2022
A vulnerability was found in Axiomatic Bento4. It has been classified as problematic. This... Moderate Unreviewed
CVE-2022-3810 was published Nov 2, 2022
An improper control of a resource through its lifetime vulnerability [CWE-664] in FortiEDR... Moderate Unreviewed
CVE-2022-39949 was published Nov 2, 2022
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle... High Unreviewed
CVE-2018-8224 was published May 13, 2022
Improper Resource Shutdown or Release in HashiCorp Vault High
CVE-2020-7220 was published for github.com/hashicorp/vault (Go) Jul 28, 2021
Improper Resource Shutdown or Release in TYPO3 extension High
CVE-2021-38623 was published for webcoast/deferred-image-processing (Composer) Aug 30, 2021
The TCP Server module in toxcore before 0.2.8 doesn't free the TCP priority queue under certain... High Unreviewed
CVE-2018-25021 was published Dec 14, 2021
The string component in the GNU C Library (aka glibc or libc6) through 2.28, when running on the... High Unreviewed
CVE-2019-6488 was published May 13, 2022
The Web Sockets implementation in Google Chrome before 7.0.517.41 does not properly handle a... High Unreviewed
CVE-2010-4038 was published May 13, 2022
Exim supports the use of multiple "-p" command line arguments which are malloc()'ed and never... Moderate Unreviewed
CVE-2017-1000369 was published May 13, 2022
Wago 750 Series PLCs with firmware version 10 and prior include a remote attack may take... Moderate Unreviewed
CVE-2018-8836 was published May 13, 2022
Logstash versions prior to 2.3.3, when using the Netflow Codec plugin, a remote attacker crafting... High Unreviewed
CVE-2016-10363 was published May 13, 2022
A vulnerability was found in Linux Kernel. It has been classified as problematic. Affected is the... Moderate Unreviewed
CVE-2022-3593 was published Oct 19, 2022
A vulnerability in the UDP processing code of Cisco IOS 15.1, 15.2, and 15.4 and IOS XE 3.14... High Unreviewed
CVE-2017-6627 was published May 13, 2022
Trustwave ModSecurity 3.0.0 through 3.0.3 allows an attacker to send crafted requests that may,... Moderate Unreviewed
CVE-2019-19886 was published May 24, 2022
A denial of service vulnerability in the Android media framework (libmediaplayerservice). Product... Moderate Unreviewed
CVE-2017-0733 was published May 13, 2022
A elevation of privilege vulnerability in the Android media framework (libstagefright). Product:... High Unreviewed
CVE-2017-0769 was published May 13, 2022
OpenFlow Plugin and OpenDayLight Controller versions Nitrogen, Carbon, Boron, Robert Varga, Anil... High Unreviewed
CVE-2017-1000411 was published May 13, 2022
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the... High Unreviewed
CVE-2017-11016 was published May 13, 2022
IBM WebSphere MQ 8.0.0.6 does not properly terminate channel agents when they are no longer... High Unreviewed
CVE-2017-1145 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database