Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,383
Erlang
33
GitHub Actions
22
Go
2,141
Maven
5,000+
npm
3,803
NuGet
687
pip
3,479
Pub
12
RubyGems
897
Rust
898
Swift
38
Unreviewed advisories
All unreviewed
5,000+

382 advisories

Loading
NVIDIA GPU Display Driver for Windows and Linux, R450 and R460 driver branch, contains a... Moderate Unreviewed
CVE-2021-1077 was published May 24, 2022
A flaw was found in Undertow when using Remoting as shipped in Red Hat Jboss EAP before version 7... High Unreviewed
CVE-2019-19343 was published May 24, 2022
An issue was discovered in res_pjsip_session.c in Digium Asterisk through 13.38.1; 14.x, 15.x,... Moderate Unreviewed
CVE-2021-26906 was published May 24, 2022
An attacker could send a specially crafted message to Crimson 3.1 (Build versions prior to 3119... Moderate Unreviewed
CVE-2020-27283 was published May 24, 2022
A potential DOS vulnerability was discovered in all versions of Gitlab starting from 13.4.x (>=13... Moderate Unreviewed
CVE-2020-26411 was published May 24, 2022
A vulnerability in the ingress packet processing function of Cisco IOS XR Software for Cisco ASR... High Unreviewed
CVE-2020-26070 was published May 24, 2022
A res_pjsip_session crash was discovered in Asterisk Open Source 13.x before 13.37.1, 16.x before... Moderate Unreviewed
CVE-2020-28327 was published May 24, 2022
A vulnerability in the SIP inspection process of Cisco Adaptive Security Appliance (ASA) Software... High Unreviewed
CVE-2020-3555 was published May 24, 2022
A vulnerability was found in Wildfly's Enterprise Java Beans (EJB) versions shipped with Red Hat... Moderate Unreviewed
CVE-2020-14307 was published May 24, 2022
Unless a nameserver is providing authoritative service for one or more zones and at least one... Moderate Unreviewed
CVE-2020-8619 was published May 24, 2022
Cleanup errors in some data cache evictions for some Intel(R) Processors may allow an... Low Unreviewed
CVE-2020-0549 was published May 24, 2022
xmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlSchemaValidateStream memory leak. High Unreviewed
CVE-2019-20388 was published May 24, 2022
Trustwave ModSecurity 3.0.0 through 3.0.3 allows an attacker to send crafted requests that may,... Moderate Unreviewed
CVE-2019-19886 was published May 24, 2022
knot-resolver before version 4.3.0 is vulnerable to denial of service through high CPU... High Unreviewed
CVE-2019-19331 was published May 24, 2022
ClamAV versions prior to 0.101.3 are susceptible to a zip bomb vulnerability where an... High Unreviewed
CVE-2019-12625 was published May 24, 2022
A vulnerability in the Secure Shell (SSH) session management for Cisco Wireless LAN Controller ... High Unreviewed
CVE-2019-15262 was published May 24, 2022
In FreeBSD 12.0-STABLE before r350261, 12.0-RELEASE before 12.0-RELEASE-p8, 11.3-STABLE before... High Unreviewed
CVE-2019-5603 was published May 24, 2022
A denial of service vulnerability was reported in Lenovo System Update before version 5.07.0084... High Unreviewed
CVE-2019-6163 was published May 24, 2022
A vulnerability in the software cryptography module of the Cisco Adaptive Security Virtual... High Unreviewed
CVE-2019-1706 was published May 24, 2022
A vulnerability in the Internet Key Exchange Version 2 Mobility and Multihoming Protocol (MOBIKE)... High Unreviewed
CVE-2019-1708 was published May 24, 2022
A vulnerability in the remote access VPN session manager of Cisco Adaptive Security Appliance ... Moderate Unreviewed
CVE-2019-1705 was published May 24, 2022
drivers/hid/hid-cp2112.c in the Linux kernel 4.9.x before 4.9.9 uses a spinlock without... Moderate Unreviewed
CVE-2017-8071 was published May 17, 2022
Unspecified vulnerability in FFMPEG 0.10 allows remote attackers to cause a denial of service. High Unreviewed
CVE-2012-2805 was published May 17, 2022
The sqlite3VdbeExec function in vdbe.c in SQLite before 3.8.9 does not properly implement... High Unreviewed
CVE-2015-3415 was published May 14, 2022
Improper socket reuse in Apache Tomcat High
CVE-2022-25762 was published for org.apache.tomcat:tomcat (Maven) May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database