Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,383
Erlang
33
GitHub Actions
22
Go
2,141
Maven
5,000+
npm
3,803
NuGet
687
pip
3,479
Pub
12
RubyGems
897
Rust
898
Swift
38
Unreviewed advisories
All unreviewed
5,000+

382 advisories

Loading
The omninet_open function in drivers/usb/serial/omninet.c in the Linux kernel before 4.10.4... Moderate Unreviewed
CVE-2017-8925 was published May 13, 2022
The NFSv4 implementation in the Linux kernel through 4.11.1 allows local users to cause a denial... Moderate Unreviewed
CVE-2017-9059 was published May 13, 2022
A vulnerability was found in Multilaser RE708 RE1200R4GC-2T2R-V3_v3411b_MUL029B. It has been... High Unreviewed
CVE-2023-0029 was published Jan 1, 2023
A vulnerability classified as problematic has been found in flar2 ElementalX up to 6.x. Affected... High Unreviewed
CVE-2018-25062 was published Jan 1, 2023
A vulnerability was found in Linux Kernel. It has been declared as problematic. Affected by this... High Unreviewed
CVE-2022-3524 was published Oct 16, 2022
A vulnerability in /src/amf/amf-context.c in Open5GS 2.4.10 and earlier leads to AMF denial of... High Unreviewed
CVE-2022-40890 was published Sep 30, 2022
A vulnerability was found in Open5GS up to 2.4.10. It has been declared as problematic. Affected... Moderate Unreviewed
CVE-2022-3299 was published Sep 27, 2022
IBM WebSphere MQ 8.0.0.6 does not properly terminate channel agents when they are no longer... High Unreviewed
CVE-2017-1145 was published May 13, 2022
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the... High Unreviewed
CVE-2017-11016 was published May 13, 2022
OpenFlow Plugin and OpenDayLight Controller versions Nitrogen, Carbon, Boron, Robert Varga, Anil... High Unreviewed
CVE-2017-1000411 was published May 13, 2022
A elevation of privilege vulnerability in the Android media framework (libstagefright). Product:... High Unreviewed
CVE-2017-0769 was published May 13, 2022
A denial of service vulnerability in the Android media framework (libmediaplayerservice). Product... Moderate Unreviewed
CVE-2017-0733 was published May 13, 2022
Trustwave ModSecurity 3.0.0 through 3.0.3 allows an attacker to send crafted requests that may,... Moderate Unreviewed
CVE-2019-19886 was published May 24, 2022
A vulnerability in the UDP processing code of Cisco IOS 15.1, 15.2, and 15.4 and IOS XE 3.14... High Unreviewed
CVE-2017-6627 was published May 13, 2022
A vulnerability was found in Linux Kernel. It has been classified as problematic. Affected is the... Moderate Unreviewed
CVE-2022-3593 was published Oct 19, 2022
Logstash versions prior to 2.3.3, when using the Netflow Codec plugin, a remote attacker crafting... High Unreviewed
CVE-2016-10363 was published May 13, 2022
Wago 750 Series PLCs with firmware version 10 and prior include a remote attack may take... Moderate Unreviewed
CVE-2018-8836 was published May 13, 2022
Exim supports the use of multiple "-p" command line arguments which are malloc()'ed and never... Moderate Unreviewed
CVE-2017-1000369 was published May 13, 2022
The Web Sockets implementation in Google Chrome before 7.0.517.41 does not properly handle a... High Unreviewed
CVE-2010-4038 was published May 13, 2022
The string component in the GNU C Library (aka glibc or libc6) through 2.28, when running on the... High Unreviewed
CVE-2019-6488 was published May 13, 2022
The TCP Server module in toxcore before 0.2.8 doesn't free the TCP priority queue under certain... High Unreviewed
CVE-2018-25021 was published Dec 14, 2021
Improper Resource Shutdown or Release in TYPO3 extension High
CVE-2021-38623 was published for webcoast/deferred-image-processing (Composer) Aug 30, 2021
Improper Resource Shutdown or Release in HashiCorp Vault High
CVE-2020-7220 was published for github.com/hashicorp/vault (Go) Jul 28, 2021
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle... High Unreviewed
CVE-2018-8224 was published May 13, 2022
An improper control of a resource through its lifetime vulnerability [CWE-664] in FortiEDR... Moderate Unreviewed
CVE-2022-39949 was published Nov 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database