GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,600
Composer 5,005
Erlang 39
GitHub Actions 38
Go 2,635
Maven 6,103
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,396

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,366 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

If named is configured to use Response Policy Zones (RPZ) an error processing some rule types can... Moderate Unreviewed

CVE-2017-3140 was published May 13, 2022

While experiencing a broadcast storm, placing the fxp0 interface into promiscuous mode via the ... Moderate Unreviewed

CVE-2018-0029 was published May 13, 2022

Receipt of specially crafted UDP/IP packets over MPLS may be able to bypass a stateless firewall... Moderate Unreviewed

CVE-2018-0031 was published May 13, 2022

On QFX5000 Series and EX4600 switches, a high rate of Ethernet pause frames or an ARP packet... Moderate Unreviewed

CVE-2018-0054 was published May 13, 2022

A denial of service vulnerability in the telnetd service on Junos OS allows remote... Moderate Unreviewed

CVE-2018-0061 was published May 13, 2022

A vulnerability in service logging for Cisco Prime Service Catalog could allow an authenticated,... Moderate Unreviewed

CVE-2018-0285 was published May 13, 2022

An uncontrolled resource consumption flaw has been discovered in redhat-certification in the way... Moderate Unreviewed

CVE-2018-10864 was published May 13, 2022

A vulnerability in the Bulk Administration Tool (BAT) for Cisco Unity Connection could allow an... Moderate Unreviewed

CVE-2018-15396 was published May 13, 2022

A vulnerability in Cisco 900 Series Aggregation Services Router (ASR) software could allow an... Moderate Unreviewed

CVE-2018-15464 was published May 13, 2022

Samba from version 4.7.0 has a vulnerability that allows a user in a Samba AD domain to crash the... Moderate Unreviewed

CVE-2018-16853 was published May 13, 2022

Uncontrolled Resource Consumption in Undertow Moderate

CVE-2018-1114 was published for io.undertow:undertow-core (Maven) May 13, 2022

A potential denial-of-service issue in the Proxygen handling of invalid HTTP2 settings which can... Moderate Unreviewed

CVE-2018-6332 was published May 13, 2022

One of the data structures that holds TCP segments in all versions of FreeBSD prior to 11.2... Moderate Unreviewed

CVE-2018-6922 was published May 13, 2022

A vulnerability in the Decryption Policy Default Action functionality of the Cisco Web Security... Moderate Unreviewed

CVE-2019-1672 was published May 13, 2022

IBM WebSphere Application Server Admin Console 7.5, 8.0, 8.5, and 9.0 is vulnerable to a... Moderate Unreviewed

CVE-2019-4080 was published May 13, 2022

Moxa IKS and EDS allow remote authenticated users to cause a denial of service via a specially... Moderate Unreviewed

CVE-2019-6559 was published May 13, 2022

In libming 0.4.8, a memory exhaustion vulnerability was found in the function... Moderate Unreviewed

CVE-2018-7876 was published May 13, 2022

An issue was discovered in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31.... Moderate Unreviewed

CVE-2018-17985 was published May 13, 2022

Cisco Adaptive Security Appliance (ASA) Software 8.4(.6) and earlier, when using an unsupported... Moderate Unreviewed

CVE-2013-5567 was published May 13, 2022

An issue was discovered in PHP 7.3.x before 7.3.0alpha3, 7.2.x before 7.2.8, and before 7.1.20.... Moderate Unreviewed

CVE-2015-9253 was published May 13, 2022

Google Chrome before 17.0.963.46 allows remote attackers to cause a denial of service ... Moderate Unreviewed

CVE-2011-3954 was published May 13, 2022

Git through 2.14.2 mishandles layers of tree objects, which allows remote attackers to cause a... Moderate Unreviewed

CVE-2017-15298 was published May 13, 2022

The ehci_advance_state function in hw/usb/hcd-ehci.c in QEMU allows local guest OS administrators... Moderate Unreviewed

CVE-2016-4037 was published May 13, 2022

** DISPUTED ** Integer signedness error in the pmcraid_ioctl_passthrough function in drivers/scsi... Moderate Unreviewed

CVE-2011-2906 was published May 13, 2022

The Performance Events subsystem in the Linux kernel before 3.1 does not properly handle event... Moderate Unreviewed

CVE-2011-2918 was published May 13, 2022

Previous 1…44…55 Next

Previous 1 2 … 42 43 44 45 46 … 54 55 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,366 advisories