Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,383
Erlang
33
GitHub Actions
22
Go
2,141
Maven
5,000+
npm
3,803
NuGet
687
pip
3,479
Pub
12
RubyGems
897
Rust
898
Swift
38
Unreviewed advisories
All unreviewed
5,000+

382 advisories

Loading
An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver... High Unreviewed
CVE-2018-8484 was published May 13, 2022
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle... High Unreviewed
CVE-2018-8611 was published May 13, 2022
An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory,... High Unreviewed
CVE-2018-8561 was published May 13, 2022
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to... High Unreviewed
CVE-2018-8562 was published May 13, 2022
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to... High Unreviewed
CVE-2018-8639 was published May 13, 2022
An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver... High Unreviewed
CVE-2018-8641 was published May 13, 2022
An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory,... High Unreviewed
CVE-2018-8554 was published May 13, 2022
Improper socket reuse in Apache Tomcat High
CVE-2022-25762 was published for org.apache.tomcat:tomcat (Maven) May 14, 2022
The sqlite3VdbeExec function in vdbe.c in SQLite before 3.8.9 does not properly implement... High Unreviewed
CVE-2015-3415 was published May 14, 2022
Unspecified vulnerability in FFMPEG 0.10 allows remote attackers to cause a denial of service. High Unreviewed
CVE-2012-2805 was published May 17, 2022
drivers/hid/hid-cp2112.c in the Linux kernel 4.9.x before 4.9.9 uses a spinlock without... Moderate Unreviewed
CVE-2017-8071 was published May 17, 2022
A vulnerability in the software cryptography module of the Cisco Adaptive Security Virtual... High Unreviewed
CVE-2019-1706 was published May 24, 2022
A vulnerability in the Internet Key Exchange Version 2 Mobility and Multihoming Protocol (MOBIKE)... High Unreviewed
CVE-2019-1708 was published May 24, 2022
A vulnerability in the remote access VPN session manager of Cisco Adaptive Security Appliance ... Moderate Unreviewed
CVE-2019-1705 was published May 24, 2022
A denial of service vulnerability was reported in Lenovo System Update before version 5.07.0084... High Unreviewed
CVE-2019-6163 was published May 24, 2022
In FreeBSD 12.0-STABLE before r350261, 12.0-RELEASE before 12.0-RELEASE-p8, 11.3-STABLE before... High Unreviewed
CVE-2019-5603 was published May 24, 2022
A vulnerability in the Secure Shell (SSH) session management for Cisco Wireless LAN Controller ... High Unreviewed
CVE-2019-15262 was published May 24, 2022
ClamAV versions prior to 0.101.3 are susceptible to a zip bomb vulnerability where an... High Unreviewed
CVE-2019-12625 was published May 24, 2022
knot-resolver before version 4.3.0 is vulnerable to denial of service through high CPU... High Unreviewed
CVE-2019-19331 was published May 24, 2022
Trustwave ModSecurity 3.0.0 through 3.0.3 allows an attacker to send crafted requests that may,... Moderate Unreviewed
CVE-2019-19886 was published May 24, 2022
xmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlSchemaValidateStream memory leak. High Unreviewed
CVE-2019-20388 was published May 24, 2022
Cleanup errors in some data cache evictions for some Intel(R) Processors may allow an... Low Unreviewed
CVE-2020-0549 was published May 24, 2022
Unless a nameserver is providing authoritative service for one or more zones and at least one... Moderate Unreviewed
CVE-2020-8619 was published May 24, 2022
A vulnerability was found in Wildfly's Enterprise Java Beans (EJB) versions shipped with Red Hat... Moderate Unreviewed
CVE-2020-14307 was published May 24, 2022
A vulnerability in the SIP inspection process of Cisco Adaptive Security Appliance (ASA) Software... High Unreviewed
CVE-2020-3555 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database