Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
656
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

114 advisories

Loading
The TCP Server module in toxcore before 0.2.8 doesn't free the TCP priority queue under certain... High Unreviewed
CVE-2018-25021 was published Dec 14, 2021
On BIG-IP versions 16.x before 16.1.0, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.4, and all... High Unreviewed
CVE-2022-23010 was published Jan 26, 2022
A DoS attack in the web application of D-Link DIR-X1860 before v1.10WWB09_Beta allows a remote... High Unreviewed
CVE-2021-41441 was published Feb 10, 2022
An issue was discovered in EMC RSA BSAFE Crypto-J versions prior to 6.2.2. There is an Improper... High Unreviewed
CVE-2016-8212 was published May 13, 2022
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle... High Unreviewed
CVE-2018-8224 was published May 13, 2022
The Web Sockets implementation in Google Chrome before 7.0.517.41 does not properly handle a... High Unreviewed
CVE-2010-4038 was published May 13, 2022
The string component in the GNU C Library (aka glibc or libc6) through 2.28, when running on the... High Unreviewed
CVE-2019-6488 was published May 13, 2022
A vulnerability in the UDP processing code of Cisco IOS 15.1, 15.2, and 15.4 and IOS XE 3.14... High Unreviewed
CVE-2017-6627 was published May 13, 2022
Logstash versions prior to 2.3.3, when using the Netflow Codec plugin, a remote attacker crafting... High Unreviewed
CVE-2016-10363 was published May 13, 2022
A elevation of privilege vulnerability in the Android media framework (libstagefright). Product:... High Unreviewed
CVE-2017-0769 was published May 13, 2022
OpenFlow Plugin and OpenDayLight Controller versions Nitrogen, Carbon, Boron, Robert Varga, Anil... High Unreviewed
CVE-2017-1000411 was published May 13, 2022
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the... High Unreviewed
CVE-2017-11016 was published May 13, 2022
IBM WebSphere MQ 8.0.0.6 does not properly terminate channel agents when they are no longer... High Unreviewed
CVE-2017-1145 was published May 13, 2022
Unisys Stealth 3.3 Windows endpoints before 3.3.016.1 allow local users to gain access to Stealth... High Unreviewed
CVE-2018-6592 was published May 13, 2022
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to... High Unreviewed
CVE-2018-8120 was published May 13, 2022
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to... High Unreviewed
CVE-2018-8124 was published May 13, 2022
An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver... High Unreviewed
CVE-2018-8165 was published May 13, 2022
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to... High Unreviewed
CVE-2018-8164 was published May 13, 2022
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to... High Unreviewed
CVE-2018-8166 was published May 13, 2022
An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS)... High Unreviewed
CVE-2018-8167 was published May 13, 2022
A remote code execution vulnerability exists when Windows improperly handles objects in memory,... High Unreviewed
CVE-2018-8213 was published May 13, 2022
An elevation of privilege vulnerability exists when the (Human Interface Device) HID Parser... High Unreviewed
CVE-2018-8169 was published May 13, 2022
A remote code execution vulnerability exists when Windows improperly handles objects in memory,... High Unreviewed
CVE-2018-8210 was published May 13, 2022
An elevation of privilege vulnerability exists in the way that the Windows kernel image handles... High Unreviewed
CVE-2018-8170 was published May 13, 2022
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to... High Unreviewed
CVE-2018-8233 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database