Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,091 advisories

Loading
When F5 BIG-IP ASM 13.0.0-13.1.0.1, 12.1.0-12.1.3.5, 11.6.0-11.6.3.1, or 11.5.1-11.5.6 is... High Unreviewed
CVE-2018-5541 was published May 14, 2022
F5 BIG-IP 13.0.0-13.1.0.5, 12.1.0-12.1.3.5, or 11.6.0-11.6.3.1 virtual servers with HTTP/2... High Unreviewed
CVE-2018-5530 was published May 14, 2022
Firmware in the Intel Puma 5, 6, and 7 Series might experience resource depletion or timeout,... High Unreviewed
CVE-2017-5693 was published May 14, 2022
The Symantec Encryption Management Server (SEMS) product, prior to version 3.4.2 MP1, may be... High Unreviewed
CVE-2018-5243 was published May 14, 2022
An issue was discovered in the HDF HDF5 1.10.2 library. Excessive stack consumption has been... Moderate Unreviewed
CVE-2018-15671 was published May 14, 2022
When GraphicsMagick 1.3.25 processes a MATLAB image in coders/mat.c, it can lead to a denial of... Moderate Unreviewed
CVE-2017-10800 was published May 14, 2022
An issue was discovered in Xen through 4.9.x allowing x86 PV guest OS users to cause a denial of... High Unreviewed
CVE-2017-15595 was published May 14, 2022
PowerDNS (aka pdns) Authoritative Server before 4.0.1 allows remote primary DNS servers to cause... High Unreviewed
CVE-2016-6172 was published May 14, 2022
The png coder in ImageMagick allows remote attackers to cause a denial of service (crash). High Unreviewed
CVE-2014-9849 was published May 14, 2022
Memory leak in the ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote... High Unreviewed
CVE-2014-9842 was published May 14, 2022
The image rendering component (createGenericPreview) of the Open Whisper Signal app through 2.29... High Unreviewed
CVE-2018-16132 was published May 14, 2022
An issue was discovered in Xen through 4.11.x. The logic in oxenstored for handling writes... Moderate Unreviewed
CVE-2018-15470 was published May 14, 2022
An issue was discovered in Xen through 4.10.x allowing x86 PV guest OS users to cause a denial of... Moderate Unreviewed
CVE-2018-7540 was published May 14, 2022
In FreeBSD before 11.1-STABLE, 11.2-RELEASE-p2, 11.1-RELEASE-p13, ip fragment reassembly code is... High Unreviewed
CVE-2018-6923 was published May 14, 2022
The Linux kernel 4.14.67 mishandles certain interaction among XFRM Netlink messages, IPPROTO_AH... Moderate Unreviewed
CVE-2018-17977 was published May 14, 2022
disp+work 7400.12.21.30308 in SAP NetWeaver 7.40 allows remote attackers to cause a denial of... High Unreviewed
CVE-2017-9845 was published May 14, 2022
In BIG-IP 14.0.0-14.0.0.2 or 13.0.0-13.1.1.1, iControl and TMSH usage by authenticated users may... Moderate Unreviewed
CVE-2018-15325 was published May 14, 2022
YukiWiki 2.1.3 and earlier does not process a particular request properly that may allow... High Unreviewed
CVE-2018-0700 was published May 14, 2022
A Resource Exhaustion issue was discovered in Schneider Electric Modicon M340 PLC BMXNOC0401,... High Unreviewed
CVE-2017-6017 was published May 14, 2022
In FreeBSD before 11.2-STABLE(r340854) and 11.2-RELEASE-p5, the NFS server lacks a bounds check... High Unreviewed
CVE-2018-17159 was published May 14, 2022
The read_packet function in knc (Kerberised NetCat) before 1.11-1 is vulnerable to denial of... High Unreviewed
CVE-2017-9732 was published May 14, 2022
There is an attempted excessive memory allocation at libxsmm_sparse_csc_reader in... Moderate Unreviewed
CVE-2018-20543 was published May 14, 2022
The control mode (mode 6) functionality in ntpd in NTP before 4.2.8p9 allows remote attackers to... Moderate Unreviewed
CVE-2016-9310 was published May 14, 2022
ntpd in NTP before 4.2.8p9 allows remote attackers to cause a denial of service (reject broadcast... Moderate Unreviewed
CVE-2016-7428 was published May 14, 2022
The broadcast mode replay prevention functionality in ntpd in NTP before 4.2.8p9 allows remote... Moderate Unreviewed
CVE-2016-7427 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database