GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,094
Erlang
29
GitHub Actions
19
Go
1,920
Maven
5,000+
npm
3,648
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
822
Swift
35
Unreviewed advisories
All unreviewed
5,000+
263 advisories
Filter by severity
A remote code execution vulnerability in the Android media framework (avc decoder). Product:...
High
Unreviewed
CVE-2017-0745
was published
May 13, 2022
A denial of service vulnerability in the Android media framework (libavc). Product: Android....
Moderate
Unreviewed
CVE-2017-0735
was published
May 13, 2022
A remote code execution vulnerability in the Android media framework (libavc). Product: Android....
High
Unreviewed
CVE-2017-0723
was published
May 13, 2022
A remote denial of service vulnerability in libvpx in Mediaserver could enable an attacker to use...
High
Unreviewed
CVE-2017-0641
was published
May 13, 2022
curl before version 7.52.1 is vulnerable to an uninitialized random in libcurl's internal...
High
Unreviewed
CVE-2016-9594
was published
May 13, 2022
A flaw was discovered in gdm 3.24.1 where gdm greeter was no longer setting the ran_once boolean...
Moderate
Unreviewed
CVE-2017-12164
was published
May 13, 2022
A vulnerability within the firewall configuration of the Cisco Application Policy Infrastructure...
High
Unreviewed
CVE-2017-12262
was published
May 13, 2022
Linux kernel vhost since version 4.8 does not properly initialize memory in messages passed...
Moderate
Unreviewed
CVE-2018-1118
was published
May 13, 2022
A vulnerability in the DHCPv6 input packet processor of Cisco Prime Network Registrar could allow...
High
Unreviewed
CVE-2019-1840
was published
May 13, 2022
The network-statistics interface in the kernel in Apple iOS before 8 and Apple TV before 7 does...
Low
Unreviewed
CVE-2014-4371
was published
May 13, 2022
Skia, as used in Google Chrome before 16.0.912.77, does not perform all required initialization...
High
Unreviewed
CVE-2011-3927
was published
May 13, 2022
A vulnerability in the Hot Standby Router Protocol (HSRP) subsystem of Cisco IOS and IOS XE...
Moderate
Unreviewed
CVE-2019-1761
was published
May 13, 2022
The br_parse_ip_options function in net/bridge/br_netfilter.c in the Linux kernel before 2.6.39...
High
Unreviewed
CVE-2011-4087
was published
May 13, 2022
drivers/scsi/bfa/bfa_core.c in the Linux kernel before 2.6.35 does not initialize a certain port...
Moderate
Unreviewed
CVE-2010-4343
was published
May 13, 2022
net/core/ethtool.c in the Linux kernel before 2.6.36 does not initialize certain data structures,...
Moderate
Unreviewed
CVE-2010-4655
was published
May 13, 2022
A memory initialization issue was addressed with improved memory handling. This issue is fixed in...
High
Unreviewed
CVE-2019-6230
was published
May 13, 2022
A memory initialization issue was addressed with improved memory handling. This issue is fixed in...
Moderate
Unreviewed
CVE-2019-6208
was published
May 13, 2022
An information disclosure vulnerability exists when the Windows kernel fails to properly...
Moderate
Unreviewed
CVE-2019-0782
was published
May 13, 2022
An information disclosure vulnerability exists when the Windows kernel improperly initializes...
Moderate
Unreviewed
CVE-2019-0767
was published
May 13, 2022
An information disclosure vulnerability exists when the Windows kernel improperly initializes...
Moderate
Unreviewed
CVE-2019-0663
was published
May 13, 2022
An information disclosure vulnerability exists when Remote Procedure Call runtime improperly...
Moderate
Unreviewed
CVE-2018-8514
was published
May 13, 2022
An information disclosure vulnerability exists when the Windows kernel fails to properly...
Moderate
Unreviewed
CVE-2018-8419
was published
May 13, 2022
An information disclosure vulnerability exists when the Windows kernel improperly initializes...
Moderate
Unreviewed
CVE-2018-8408
was published
May 13, 2022
An information disclosure vulnerability exists when "Kernel Remote Procedure Call Provider"...
Moderate
Unreviewed
CVE-2018-8407
was published
May 13, 2022
An information disclosure vulnerability exists when the Windows kernel improperly initializes...
Moderate
Unreviewed
CVE-2018-8121
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API