Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,383
Erlang
33
GitHub Actions
22
Go
2,141
Maven
5,000+
npm
3,803
NuGet
687
pip
3,479
Pub
12
RubyGems
897
Rust
898
Swift
38
Unreviewed advisories
All unreviewed
5,000+

382 advisories

Loading
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to... High Unreviewed
CVE-2018-8233 was published May 13, 2022
An elevation of privilege vulnerability exists when the (Human Interface Device) HID Parser... High Unreviewed
CVE-2018-8169 was published May 13, 2022
A remote code execution vulnerability exists when Windows improperly handles objects in memory,... High Unreviewed
CVE-2018-8210 was published May 13, 2022
An elevation of privilege vulnerability exists in the way that the Windows kernel image handles... High Unreviewed
CVE-2018-8170 was published May 13, 2022
A remote code execution vulnerability exists when Windows improperly handles objects in memory,... High Unreviewed
CVE-2018-8213 was published May 13, 2022
An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver... High Unreviewed
CVE-2018-8165 was published May 13, 2022
An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS)... High Unreviewed
CVE-2018-8167 was published May 13, 2022
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to... High Unreviewed
CVE-2018-8164 was published May 13, 2022
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to... High Unreviewed
CVE-2018-8166 was published May 13, 2022
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to... High Unreviewed
CVE-2018-8120 was published May 13, 2022
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to... High Unreviewed
CVE-2018-8124 was published May 13, 2022
Unisys Stealth 3.3 Windows endpoints before 3.3.016.1 allow local users to gain access to Stealth... High Unreviewed
CVE-2018-6592 was published May 13, 2022
The NFSv4 implementation in the Linux kernel through 4.11.1 allows local users to cause a denial... Moderate Unreviewed
CVE-2017-9059 was published May 13, 2022
The omninet_open function in drivers/usb/serial/omninet.c in the Linux kernel before 4.10.4... Moderate Unreviewed
CVE-2017-8925 was published May 13, 2022
The KEYS subsystem in the Linux kernel before 4.10.13 allows local users to cause a denial of... Moderate Unreviewed
CVE-2017-7472 was published May 13, 2022
Improper Resource Shutdown or Release in Apache Tomcat High
CVE-2017-5650 was published for org.apache.tomcat:tomcat (Maven) May 13, 2022
sunSUNQ
IBM WebSphere MQ 8.0.0.6 does not properly terminate channel agents when they are no longer... High Unreviewed
CVE-2017-1145 was published May 13, 2022
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the... High Unreviewed
CVE-2017-11016 was published May 13, 2022
OpenFlow Plugin and OpenDayLight Controller versions Nitrogen, Carbon, Boron, Robert Varga, Anil... High Unreviewed
CVE-2017-1000411 was published May 13, 2022
A elevation of privilege vulnerability in the Android media framework (libstagefright). Product:... High Unreviewed
CVE-2017-0769 was published May 13, 2022
A denial of service vulnerability in the Android media framework (libmediaplayerservice). Product... Moderate Unreviewed
CVE-2017-0733 was published May 13, 2022
Logstash versions prior to 2.3.3, when using the Netflow Codec plugin, a remote attacker crafting... High Unreviewed
CVE-2016-10363 was published May 13, 2022
A vulnerability in the UDP processing code of Cisco IOS 15.1, 15.2, and 15.4 and IOS XE 3.14... High Unreviewed
CVE-2017-6627 was published May 13, 2022
Wago 750 Series PLCs with firmware version 10 and prior include a remote attack may take... Moderate Unreviewed
CVE-2018-8836 was published May 13, 2022
Exim supports the use of multiple "-p" command line arguments which are malloc()'ed and never... Moderate Unreviewed
CVE-2017-1000369 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database