Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,218
Erlang
31
GitHub Actions
19
Go
1,988
Maven
5,000+
npm
3,704
NuGet
661
pip
3,332
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

336 advisories

Loading
Logstash versions prior to 2.3.3, when using the Netflow Codec plugin, a remote attacker crafting... High Unreviewed
CVE-2016-10363 was published May 13, 2022
A vulnerability in the UDP processing code of Cisco IOS 15.1, 15.2, and 15.4 and IOS XE 3.14... High Unreviewed
CVE-2017-6627 was published May 13, 2022
Wago 750 Series PLCs with firmware version 10 and prior include a remote attack may take... Moderate Unreviewed
CVE-2018-8836 was published May 13, 2022
Exim supports the use of multiple "-p" command line arguments which are malloc()'ed and never... Moderate Unreviewed
CVE-2017-1000369 was published May 13, 2022
The string component in the GNU C Library (aka glibc or libc6) through 2.28, when running on the... High Unreviewed
CVE-2019-6488 was published May 13, 2022
The Web Sockets implementation in Google Chrome before 7.0.517.41 does not properly handle a... High Unreviewed
CVE-2010-4038 was published May 13, 2022
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle... High Unreviewed
CVE-2018-8224 was published May 13, 2022
An issue was discovered in EMC RSA BSAFE Crypto-J versions prior to 6.2.2. There is an Improper... High Unreviewed
CVE-2016-8212 was published May 13, 2022
RSA BSAFE Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) and prior to 4.1.6.1 (in 4.1.x... Moderate Unreviewed
CVE-2018-11055 was published May 13, 2022
Improper resource shutdown or release in firmware for some Intel(R) SSD, Intel(R) SSD DC, Intel(R... Moderate Unreviewed
CVE-2021-33069 was published May 13, 2022
The unity-firefox-extension package could be tricked into destroying the Unity webapps context,... Moderate Unreviewed
CVE-2013-1054 was published May 5, 2022
The unity-firefox-extension package could be tricked into dropping a C callback which was still... Moderate Unreviewed
CVE-2013-1055 was published May 5, 2022
Resource leakage when decoding certificates and keys High
CVE-2022-1473 was published for openssl-src (Rust) May 4, 2022
pinkforest
A denial of service vulnerability exists in the cgiserver.cgi Upgrade API functionality of... Moderate Unreviewed
CVE-2021-40405 was published Apr 15, 2022
A vulnerability classified as problematic was found in LibTIFF 4.3.0. Affected by this... Moderate Unreviewed
CVE-2022-1210 was published Apr 4, 2022
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as problematic was found in WEKA... Moderate Unreviewed
CVE-2017-20013 was published Mar 29, 2022
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in WEKA INTEREST Security Scanner 1.8.... Moderate Unreviewed
CVE-2017-20011 was published Mar 29, 2022
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as problematic has been found in WEKA... Moderate Unreviewed
CVE-2017-20012 was published Mar 29, 2022
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as problematic, has been... Moderate Unreviewed
CVE-2017-20014 was published Mar 29, 2022
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as problematic, was found... Moderate Unreviewed
CVE-2017-20015 was published Mar 29, 2022
A vulnerability, which was classified as problematic, was found in Shemes GrabIt up to 1.7.2 Beta... Moderate Unreviewed
CVE-2010-10001 was published Mar 29, 2022
BIND 9.16.11 -> 9.16.26, 9.17.0 -> 9.18.0 and versions 9.16.11-S1 -> 9.16.26-S1 of the BIND... Moderate Unreviewed
CVE-2022-0396 was published Mar 24, 2022
TeamViewer Linux versions before 15.28 do not properly execute a deletion command for the... Moderate Unreviewed
CVE-2022-23242 was published Mar 24, 2022
Tor Browser 9.0.7 on Windows 10 build 10586 is vulnerable to information disclosure. This could... Moderate Unreviewed
CVE-2021-46702 was published Feb 27, 2022
Denial of Service in Packetbeat High
CVE-2017-11480 was published for github.com/elastic/beats (Go) Feb 15, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database