GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,878
Composer 4,266
Erlang 31
GitHub Actions 21
Go 2,035
Maven 5,219
npm 3,732
NuGet 662
pip 3,413
Pub 12
RubyGems 891
Rust 865
Swift 36

Unreviewed advisories

All unreviewed 237,760

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

269 advisories

Filter by severity

Sort by

Least recently updated

MIMEDefang 2.80 and earlier creates a PID file after dropping privileges to a non-root account,... High Unreviewed

CVE-2017-14102 was published May 13, 2022

UnrealIRCd 4.0.13 and earlier creates a PID file after dropping privileges to a non-root account,... Moderate Unreviewed

CVE-2017-13649 was published May 13, 2022

An elevation of privilege vulnerability in the Android media framework (libaudioservice). Product... High Unreviewed

CVE-2017-13153 was published May 13, 2022

Nagios Core before 4.3.3 creates a nagios.lock PID file after dropping privileges to a non-root... Moderate Unreviewed

CVE-2017-12847 was published May 13, 2022

A vulnerability has been identified in RUGGEDCOM ROS for RSL910 devices (All versions < ROS V5.0... High Unreviewed

CVE-2017-12736 was published May 13, 2022

Uninitialized data in endianness conversion in the XEvent handling of the X.Org X Server before... Moderate Unreviewed

CVE-2017-10972 was published May 13, 2022

A remote code execution vulnerability in the Android media framework (avc decoder). Product:... High Unreviewed

CVE-2017-0745 was published May 13, 2022

A denial of service vulnerability in the Android media framework (libavc). Product: Android.... Moderate Unreviewed

CVE-2017-0735 was published May 13, 2022

A remote code execution vulnerability in the Android media framework (libavc). Product: Android.... High Unreviewed

CVE-2017-0723 was published May 13, 2022

A remote denial of service vulnerability in libvpx in Mediaserver could enable an attacker to use... High Unreviewed

CVE-2017-0641 was published May 13, 2022

curl before version 7.52.1 is vulnerable to an uninitialized random in libcurl's internal... High Unreviewed

CVE-2016-9594 was published May 13, 2022

A flaw was discovered in gdm 3.24.1 where gdm greeter was no longer setting the ran_once boolean... Moderate Unreviewed

CVE-2017-12164 was published May 13, 2022

A vulnerability within the firewall configuration of the Cisco Application Policy Infrastructure... High Unreviewed

CVE-2017-12262 was published May 13, 2022

Linux kernel vhost since version 4.8 does not properly initialize memory in messages passed... Moderate Unreviewed

CVE-2018-1118 was published May 13, 2022

A vulnerability in the DHCPv6 input packet processor of Cisco Prime Network Registrar could allow... High Unreviewed

CVE-2019-1840 was published May 13, 2022

The network-statistics interface in the kernel in Apple iOS before 8 and Apple TV before 7 does... Low Unreviewed

CVE-2014-4371 was published May 13, 2022

Skia, as used in Google Chrome before 16.0.912.77, does not perform all required initialization... High Unreviewed

CVE-2011-3927 was published May 13, 2022

A vulnerability in the Hot Standby Router Protocol (HSRP) subsystem of Cisco IOS and IOS XE... Moderate Unreviewed

CVE-2019-1761 was published May 13, 2022

The br_parse_ip_options function in net/bridge/br_netfilter.c in the Linux kernel before 2.6.39... High Unreviewed

CVE-2011-4087 was published May 13, 2022

drivers/scsi/bfa/bfa_core.c in the Linux kernel before 2.6.35 does not initialize a certain port... Moderate Unreviewed

CVE-2010-4343 was published May 13, 2022

net/core/ethtool.c in the Linux kernel before 2.6.36 does not initialize certain data structures,... Moderate Unreviewed

CVE-2010-4655 was published May 13, 2022

A memory initialization issue was addressed with improved memory handling. This issue is fixed in... High Unreviewed

CVE-2019-6230 was published May 13, 2022

A memory initialization issue was addressed with improved memory handling. This issue is fixed in... Moderate Unreviewed

CVE-2019-6208 was published May 13, 2022

An information disclosure vulnerability exists when the Windows kernel fails to properly... Moderate Unreviewed

CVE-2019-0782 was published May 13, 2022

An information disclosure vulnerability exists when the Windows kernel improperly initializes... Moderate Unreviewed

CVE-2019-0767 was published May 13, 2022

Previous 1 2 … 6 7 8 9 10 11 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

269 advisories