GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
296 advisories
Filter by severity
In Wireshark 2.4.0 to 2.4.2 and 2.2.0 to 2.2.10, the IWARP_MPA dissector could crash. This was...
High
Unreviewed
CVE-2017-17084
was published
May 14, 2022
In Wireshark 2.4.0 to 2.4.2 and 2.2.0 to 2.2.10, the NetBIOS dissector could crash. This was...
High
Unreviewed
CVE-2017-17083
was published
May 14, 2022
In Wireshark 2.4.0 to 2.4.2 and 2.2.0 to 2.2.10, the CIP Safety dissector could crash. This was...
High
Unreviewed
CVE-2017-17085
was published
May 14, 2022
In PHP before 5.6.31, 7.x before 7.0.21, and 7.1.x before 7.1.7, the openssl extension PEM...
High
Unreviewed
CVE-2017-11144
was published
May 14, 2022
An Improper Check for Unusual or Exceptional Conditions vulnerability exists in the embedded web...
High
Unreviewed
CVE-2018-7833
was published
May 14, 2022
In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access in is_mmacro() in asm...
Moderate
Unreviewed
CVE-2017-17815
was published
May 14, 2022
FastStone Image Viewer 6.5 has an Exception Handler Chain Corrupted issue starting at...
Moderate
Unreviewed
CVE-2018-15815
was published
May 14, 2022
NVIDIA Jetson TX2 contains a vulnerability in the kernel driver (on all versions prior to R28.3)...
Moderate
Unreviewed
CVE-2019-5673
was published
May 14, 2022
In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, a crafted PNG file could trigger a crash...
Moderate
Unreviewed
CVE-2017-13142
was published
May 14, 2022
The Linux Kernel 2.6.32 and later are affected by a denial of service, by flooding the diagnostic...
High
Unreviewed
CVE-2017-1000407
was published
May 14, 2022
An issue was discovered in res_http_websocket.c in Asterisk 15.x through 15.2.1. If the HTTP...
Moderate
Unreviewed
CVE-2018-7287
was published
May 13, 2022
In the Linux kernel before 4.17, a local attacker able to set attributes on an xfs filesystem...
Moderate
Unreviewed
CVE-2018-18690
was published
May 13, 2022
Improper check of unusual conditions when launching msiexec.exe in safensec.com (SysWatch service...
High
Unreviewed
CVE-2018-13013
was published
May 13, 2022
Unhandled exception in Content Protection subsystem in Intel CSME before versions 11.8.60, 11.11...
Moderate
Unreviewed
CVE-2018-12189
was published
May 13, 2022
An issue was discovered in Xen through 4.9.x allowing HVM guest OS users to cause a denial of...
Moderate
Unreviewed
CVE-2017-17044
was published
May 13, 2022
An elevation of privilege vulnerability in the Qualcomm sound driver could enable a local...
High
Unreviewed
CVE-2017-0610
was published
May 13, 2022
QFX and EX Series switches configured to drop traffic when the MAC move limit is exceeded will...
High
Unreviewed
CVE-2018-0005
was published
May 13, 2022
The raw_cmd_copyin function in drivers/block/floppy.c in the Linux kernel through 3.14.3 does not...
High
Unreviewed
CVE-2014-1737
was published
May 13, 2022
Zcash, before the Sapling network upgrade (2018-10-28), had a counterfeiting vulnerability. A key...
High
Unreviewed
CVE-2019-7167
was published
May 13, 2022
Failure to check error conditions in V8 in Google Chrome prior to 72.0.3626.81 allowed a remote...
High
Unreviewed
CVE-2019-5763
was published
May 13, 2022
When configuring a stateless firewall filter in Junos OS, terms named using the format "internal...
Critical
Unreviewed
CVE-2019-0036
was published
May 13, 2022
gio/gsocketclient.c in GNOME GLib 2.59.2 does not ensure that a parent GTask remains alive during...
Moderate
Unreviewed
CVE-2019-9633
was published
May 13, 2022
An Improper Check for Unusual or Exceptional Conditions vulnerability exists in Schneider...
High
Unreviewed
CVE-2018-7789
was published
May 13, 2022
An exploitable unhandled exception vulnerability exists in multiple APIs of CPP-Ethereum JSON-RPC...
High
Unreviewed
CVE-2017-12119
was published
May 13, 2022
Nginx NJS v0.7.2 was discovered to contain a segmentation violation via njs_lvlhsh_bucket_find at...
High
Unreviewed
CVE-2022-29369
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API