GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,600
Composer 5,005
Erlang 39
GitHub Actions 38
Go 2,635
Maven 6,103
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,393

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,311 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

By design, BIND is intended to limit the number of TCP clients that can be connected at any given... High Unreviewed

CVE-2018-5743 was published May 24, 2022

sf-pcapng.c in libpcap before 1.9.1 does not properly validate the PHB header length before... Moderate Unreviewed

CVE-2019-15165 was published May 24, 2022

An exploitable memory corruption vulnerability exists in the JavaScript engine of Foxit Software... High Unreviewed

CVE-2019-5031 was published May 24, 2022

JetBrains PyCharm before 2019.2 was allocating a buffer of unknown size for one of the connection... High Unreviewed

CVE-2019-14958 was published May 24, 2022

A vulnerability in the web-based management interface of Cisco IC3000 Industrial Compute Gateway... Moderate Unreviewed

CVE-2019-12714 was published May 24, 2022

In tzdata there is possible memory corruption due to a mismatch between allocation and... High Unreviewed

CVE-2019-9290 was published May 24, 2022

In Bluetooth, there is a possible remote code execution due to an improper memory allocation.... High Unreviewed

CVE-2019-9291 was published May 24, 2022

Ubiquiti EdgeMAX devices before 2.0.3 allow remote attackers to cause a denial of service (disk... High Unreviewed

CVE-2019-16889 was published May 24, 2022

OpenStack os-vif Ageing time of 0 disables linuxbridge MAC learning Critical

CVE-2019-15753 was published for os-vif (pip) May 24, 2022

IBM Security Guardium Big Data Intelligence 4.0 (SonarG) does not properly restrict the size or... High Unreviewed

CVE-2019-4338 was published May 24, 2022

A peer could send empty handshake fragments containing only padding which would be kept in memory... High Unreviewed

CVE-2019-11924 was published May 24, 2022

In Envoy through 1.11.1, users may configure a route to match incoming path headers via the... High Unreviewed

CVE-2019-15225 was published May 24, 2022

An issue was discovered in 3S-Smart CODESYS V3 products. A crafted communication request may... High Unreviewed

CVE-2019-9012 was published May 24, 2022

Some HTTP/2 implementations are vulnerable to unconstrained interal data buffering, potentially... High Unreviewed

CVE-2019-9517 was published May 24, 2022

Some HTTP/2 implementations are vulnerable to a settings flood, potentially leading to a denial... High Unreviewed

CVE-2019-9515 was published May 24, 2022

Some HTTP/2 implementations are vulnerable to a flood of empty frames, potentially leading to a... High Unreviewed

CVE-2019-9518 was published May 24, 2022

Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of... Moderate Unreviewed

CVE-2019-9516 was published May 24, 2022

golang.org/x/net/http vulnerable to a reset flood High

CVE-2019-9514 was published for golang.org/x/net (Go) May 24, 2022

Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization... High Unreviewed

CVE-2019-9511 was published May 24, 2022

It was found that the fix for CVE-2018-14648 in 389-ds-base, versions 1.4.0.x before 1.4.0.17,... High Unreviewed

CVE-2019-10171 was published May 24, 2022

A Vulnerability has been found in PowerDNS Authoritative Server before versions 4.1.9, 4.0.8... Moderate Unreviewed

CVE-2019-10163 was published May 24, 2022

Mikrotik RouterOS before 6.44.5 (long-term release tree) is vulnerable to memory exhaustion. By... Moderate Unreviewed

CVE-2019-13954 was published May 24, 2022

** DISPUTED ** In libjpeg-turbo 2.0.2, a large amount of memory can be used during processing of... Moderate Unreviewed

CVE-2019-13960 was published May 24, 2022

A PngChunk::parseChunkContent uncontrolled memory allocation in Exiv2 through 0.27.1 allows an... Moderate Unreviewed

CVE-2019-13112 was published May 24, 2022

Jonathan Looney discovered that the TCP retransmission queue implementation in tcp_fragment in... High Unreviewed

CVE-2019-11478 was published May 24, 2022

Previous 1…43…53 Next

Previous 1 2 … 41 42 43 44 45 … 52 53 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,311 advisories