Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,825
Erlang
36
GitHub Actions
32
Go
2,417
Maven
5,000+
npm
4,054
NuGet
723
pip
3,845
Pub
12
RubyGems
933
Rust
1,005
Swift
38
Unreviewed advisories
All unreviewed
5,000+

4,983 advisories

Loading
The cookie feature in the packet action API implementation in net/sched/act_api.c in the Linux... High Unreviewed
CVE-2017-7979 was published May 17, 2022
imlib2 before 1.4.7 allows remote attackers to cause a denial of service (segmentation fault) via... High Unreviewed
CVE-2014-9764 was published May 17, 2022
In ARM Trusted Firmware through 1.3, the secure self-hosted invasive debug interface allows... High Unreviewed
CVE-2017-7564 was published May 17, 2022
Pexip Infinity before 27.3 allows remote attackers to trigger a software abort via HTTP. High Unreviewed
CVE-2022-27934 was published Jul 18, 2022
In all Android releases from CAF using the Linux kernel, a vulnerability exists in the parsing of... High Unreviewed
CVE-2014-9965 was published May 17, 2022
A vulnerability has been identified in OpenPCS 7 V7.1 and earlier (All versions), OpenPCS 7 V8.0 ... High Unreviewed
CVE-2018-4832 was published May 13, 2022
In all Android releases from CAF using the Linux kernel, a vulnerability exists in the parsing of... High Unreviewed
CVE-2014-9962 was published May 17, 2022
TeamSpeak Client 3.0.19 allows remote attackers to cause a denial of service (application crash)... High Unreviewed
CVE-2017-9982 was published May 17, 2022
The KEYS subsystem in the Linux kernel before 4.13.10 does not correctly synchronize the actions... High Unreviewed
CVE-2017-15951 was published May 17, 2022
The pygrub boot loader emulator in Xen, when nul-delimited output format is requested, allows... High Unreviewed
CVE-2016-9380 was published May 17, 2022
Apache Traffic Server before 6.2.1 generates a coredump when there is a mismatch between content... High Unreviewed
CVE-2017-5659 was published May 17, 2022
runtime/JSONObject.cpp in JavaScriptCore in WebKit, as distributed in Safari Technology Preview... High Unreviewed
CVE-2016-10222 was published May 17, 2022
Microsoft OneNote 2007 SP3 and Microsoft OneNote 2010 SP2 allow remote attackers to execute... High Unreviewed
CVE-2017-0197 was published May 17, 2022
ION memory management module in Huawei Mate 8 phones with software NXT-AL10C00B197 and earlier... High Unreviewed
CVE-2016-8756 was published May 17, 2022
A vulnerability in the AutoVNF logging function of Cisco Ultra Services Framework could allow an... High Unreviewed
CVE-2017-6680 was published May 17, 2022
Insufficient validation of SSH keys in Junos Space before 15.2R2 allows man-in-the-middle (MITM)... High Unreviewed
CVE-2016-4927 was published May 17, 2022
All versions of the NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode... High Unreviewed
CVE-2017-0346 was published May 17, 2022
In all Android releases from CAF using the Linux kernel, a QTEE system call fails to validate a... High Unreviewed
CVE-2015-9033 was published May 17, 2022
A vulnerability in the feature-license management functionality of Cisco Firepower System... High Unreviewed
CVE-2017-6674 was published May 17, 2022
Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.2 and earlier allows... High Unreviewed
CVE-2017-2179 was published May 17, 2022
The Application Layer Gateway (ALG) module in Cisco IOS 12.2 through 12.4 and 15.0 through 15.4,... High Unreviewed
CVE-2014-2111 was published May 17, 2022
The TCP/IP networking module in Unisys ClearPath MCP systems with TCP-IP-SW 57.1 before 57.152,... High Unreviewed
CVE-2017-5872 was published May 17, 2022
Improper validation vulnerability in CACertificateInfo prior to SMR Jul-2022 Release 1 allows... High Unreviewed
CVE-2022-33703 was published Jul 13, 2022
A vulnerability has been identified in SIMATIC eaSie Core Package (All versions < V22.00). The... High Unreviewed
CVE-2021-44221 was published Jul 13, 2022
Improper validation vulnerability in ucmRetParcelable of KnoxSDK prior to SMR Jul-2022 Release 1... High Unreviewed
CVE-2022-33704 was published Jul 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database