Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,383
Erlang
33
GitHub Actions
22
Go
2,141
Maven
5,000+
npm
3,803
NuGet
687
pip
3,479
Pub
12
RubyGems
897
Rust
898
Swift
38
Unreviewed advisories
All unreviewed
5,000+

144 advisories

Loading
An elevation of privilege vulnerability exists in the way that the Microsoft RemoteFX Virtual GPU... High Unreviewed
CVE-2018-8471 was published May 13, 2022
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle... High Unreviewed
CVE-2018-8611 was published May 13, 2022
An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory,... High Unreviewed
CVE-2018-8561 was published May 13, 2022
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to... High Unreviewed
CVE-2018-8562 was published May 13, 2022
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to... High Unreviewed
CVE-2018-8639 was published May 13, 2022
An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver... High Unreviewed
CVE-2018-8641 was published May 13, 2022
An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory,... High Unreviewed
CVE-2018-8554 was published May 13, 2022
Improper socket reuse in Apache Tomcat High
CVE-2022-25762 was published for org.apache.tomcat:tomcat (Maven) May 14, 2022
The sqlite3VdbeExec function in vdbe.c in SQLite before 3.8.9 does not properly implement... High Unreviewed
CVE-2015-3415 was published May 14, 2022
Unspecified vulnerability in FFMPEG 0.10 allows remote attackers to cause a denial of service. High Unreviewed
CVE-2012-2805 was published May 17, 2022
A vulnerability in the software cryptography module of the Cisco Adaptive Security Virtual... High Unreviewed
CVE-2019-1706 was published May 24, 2022
A vulnerability in the Internet Key Exchange Version 2 Mobility and Multihoming Protocol (MOBIKE)... High Unreviewed
CVE-2019-1708 was published May 24, 2022
A denial of service vulnerability was reported in Lenovo System Update before version 5.07.0084... High Unreviewed
CVE-2019-6163 was published May 24, 2022
In FreeBSD 12.0-STABLE before r350261, 12.0-RELEASE before 12.0-RELEASE-p8, 11.3-STABLE before... High Unreviewed
CVE-2019-5603 was published May 24, 2022
A vulnerability in the Secure Shell (SSH) session management for Cisco Wireless LAN Controller ... High Unreviewed
CVE-2019-15262 was published May 24, 2022
ClamAV versions prior to 0.101.3 are susceptible to a zip bomb vulnerability where an... High Unreviewed
CVE-2019-12625 was published May 24, 2022
knot-resolver before version 4.3.0 is vulnerable to denial of service through high CPU... High Unreviewed
CVE-2019-19331 was published May 24, 2022
xmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlSchemaValidateStream memory leak. High Unreviewed
CVE-2019-20388 was published May 24, 2022
A vulnerability in the SIP inspection process of Cisco Adaptive Security Appliance (ASA) Software... High Unreviewed
CVE-2020-3555 was published May 24, 2022
A vulnerability in the ingress packet processing function of Cisco IOS XR Software for Cisco ASR... High Unreviewed
CVE-2020-26070 was published May 24, 2022
A flaw was found in Undertow when using Remoting as shipped in Red Hat Jboss EAP before version 7... High Unreviewed
CVE-2019-19343 was published May 24, 2022
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it... High Unreviewed
CVE-2021-1098 was published May 24, 2022
A vulnerability in an API of the Call Bridge feature of Cisco Meeting Server could allow an... High Unreviewed
CVE-2021-40122 was published May 24, 2022
Belledonne Belle-sip before 5.0.20 can crash applications such as Linphone via " \ " in the... High Unreviewed
CVE-2021-43611 was published May 24, 2022
An issue with ARP packets in Arista’s EOS affecting the 7800R3, 7500R3, and 7280R3 series of... High Unreviewed
CVE-2020-24360 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database