GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,094
Erlang
29
GitHub Actions
19
Go
1,920
Maven
5,000+
npm
3,648
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
822
Swift
35
Unreviewed advisories
All unreviewed
5,000+
263 advisories
Filter by severity
In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the NBAP dissector could crash. This was...
High
Unreviewed
CVE-2018-7419
was published
May 13, 2022
In Wireshark 2.6.0 to 2.6.2, 2.4.0 to 2.4.8, and 2.2.0 to 2.2.16, the Bluetooth AVDTP dissector...
High
Unreviewed
CVE-2018-16058
was published
May 13, 2022
Incorrect initialization logic of RAR decoder objects in 7-Zip 18.03 and before can lead to usage...
High
Unreviewed
CVE-2018-10115
was published
May 13, 2022
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1...
Moderate
Unreviewed
CVE-2018-0926
was published
May 13, 2022
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1...
Moderate
Unreviewed
CVE-2018-0895
was published
May 13, 2022
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1...
Moderate
Unreviewed
CVE-2018-0897
was published
May 13, 2022
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1...
Moderate
Unreviewed
CVE-2018-0901
was published
May 13, 2022
An information disclosure vulnerability exists when the Windows kernel fails to properly...
Moderate
Unreviewed
CVE-2018-0887
was published
May 13, 2022
Microsoft Office 2010 SP2, Microsoft Office 2013 SP1 and RT SP1, Microsoft Office 2016, and...
Moderate
Unreviewed
CVE-2018-0853
was published
May 13, 2022
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1...
Moderate
Unreviewed
CVE-2018-0814
was published
May 13, 2022
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1...
Moderate
Unreviewed
CVE-2018-0813
was published
May 13, 2022
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1...
Moderate
Unreviewed
CVE-2018-0811
was published
May 13, 2022
The Windows kernel in Windows 7 SP1, Windows Server 2008 SP2 and R2, and Windows Server 2012...
Moderate
Unreviewed
CVE-2018-0810
was published
May 13, 2022
The Windows kernel in Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511,...
Moderate
Unreviewed
CVE-2018-0746
was published
May 13, 2022
The Windows kernel in Windows 10 version 1703. Windows 10 version 1709, and Windows Server,...
Moderate
Unreviewed
CVE-2018-0745
was published
May 13, 2022
The vmxnet3_complete_packet function in hw/net/vmxnet3.c in QEMU (aka Quick Emulator) allows...
Moderate
Unreviewed
CVE-2016-6836
was published
May 13, 2022
LibVNC before 2f5b2ad1c6c99b1ac6482c95844a84d66bb52838 contains multiple weaknesses CWE-665:...
High
Unreviewed
CVE-2018-20022
was published
May 13, 2022
LibVNC before 8b06f835e259652b0ff026898014fc7297ade858 contains CWE-665: Improper Initialization...
High
Unreviewed
CVE-2018-20023
was published
May 13, 2022
UltraVNC revision 1211 contains multiple memory leaks (CWE-665) in VNC server code, which allows...
High
Unreviewed
CVE-2019-8277
was published
May 13, 2022
Insufficient sanitization of environment variables passed to rsync can bypass the restrictions...
Critical
Unreviewed
CVE-2019-3464
was published
May 13, 2022
The vmnc decoder in the gstreamer does not initialize the render canvas, which allows remote...
High
Unreviewed
CVE-2016-9446
was published
May 13, 2022
The __skb_flow_dissect function in net/core/flow_dissector.c in the Linux kernel before 4.3 does...
Critical
Unreviewed
CVE-2017-13715
was published
May 13, 2022
slapd in OpenLDAP 2.4.45 and earlier creates a PID file after dropping privileges to a non-root...
Moderate
Unreviewed
CVE-2017-14159
was published
May 13, 2022
Insecure default variable initialization of Intel(R) RealSense(TM) ID Solution F450 before...
Moderate
Unreviewed
CVE-2021-33130
was published
May 13, 2022
Due to a mishandled error, it is possible to leave the DRTM UApp in a partially initialized state...
High
Unreviewed
CVE-2021-26353
was published
May 11, 2022
ProTip!
Advisories are also available from the
GraphQL API