Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,090 advisories

Loading
IBM Spectrum Protect 7.1 and 8.1 dsmc and dsmcad processes incorrectly accumulate TCP/IP sockets... High Unreviewed
CVE-2018-1786 was published May 13, 2022
A potential denial-of-service issue in the Proxygen handling of invalid HTTP2 settings which can... Moderate Unreviewed
CVE-2018-6332 was published May 13, 2022
A Malformed h2 frame can cause 'std::out_of_range' exception when parsing priority meta data.... High Unreviewed
CVE-2018-6335 was published May 13, 2022
A potential denial-of-service issue in the Proxygen handling of invalid HTTP2 priority settings ... High Unreviewed
CVE-2018-6346 was published May 13, 2022
An issue in the Proxygen handling of HTTP2 parsing of headers/trailers can lead to a denial-of... High Unreviewed
CVE-2018-6347 was published May 13, 2022
Denial of Service through Resource Depletion vulnerability in the agent in non-Windows McAfee... High Unreviewed
CVE-2018-6707 was published May 13, 2022
One of the data structures that holds TCP segments in all versions of FreeBSD prior to 11.2... Moderate Unreviewed
CVE-2018-6922 was published May 13, 2022
Philips e-Alert Unit (non-medical device), Version R2.1 and prior. The software does not properly... High Unreviewed
CVE-2018-8854 was published May 13, 2022
A vulnerability in the Decryption Policy Default Action functionality of the Cisco Web Security... Moderate Unreviewed
CVE-2019-1672 was published May 13, 2022
Mitsubishi Electric Q03/04/06/13/26UDVCPU: serial number 20081 and prior, Q04/06/13/26UDPVCPU:... High Unreviewed
CVE-2019-6535 was published May 13, 2022
IBM WebSphere Application Server Admin Console 7.5, 8.0, 8.5, and 9.0 is vulnerable to a... Moderate Unreviewed
CVE-2019-4080 was published May 13, 2022
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to a denial of service,... High Unreviewed
CVE-2019-4046 was published May 13, 2022
Moxa IKS and EDS allow remote authenticated users to cause a denial of service via a specially... Moderate Unreviewed
CVE-2019-6559 was published May 13, 2022
In libming 0.4.8, a memory exhaustion vulnerability was found in the function... Moderate Unreviewed
CVE-2018-7876 was published May 13, 2022
An issue was discovered in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31.... Moderate Unreviewed
CVE-2018-17985 was published May 13, 2022
ColossusCoinXT through 1.0.5 (a chain-based proof-of-stake cryptocurrency) allows a remote denial... High Unreviewed
CVE-2018-19158 was published May 13, 2022
A vulnerability stemming from failure to properly clean up closed OMAPI connections can lead to... High Unreviewed
CVE-2017-3144 was published May 13, 2022
Cisco Adaptive Security Appliance (ASA) Software 8.4(.6) and earlier, when using an unsupported... Moderate Unreviewed
CVE-2013-5567 was published May 13, 2022
An issue was discovered in PHP 7.3.x before 7.3.0alpha3, 7.2.x before 7.2.8, and before 7.1.20.... Moderate Unreviewed
CVE-2015-9253 was published May 13, 2022
Bitcoin Core before v0.13.0 allows denial of service (memory exhaustion) triggered by the remote... High Unreviewed
CVE-2016-10724 was published May 13, 2022
Node.js: All versions prior to Node.js 6.15.0, 8.14.0, 10.14.0 and 11.3.0: Slowloris HTTP Denial... High Unreviewed
CVE-2018-12122 was published May 13, 2022
Node.js versions 9.7.0 and later and 10.x are vulnerable and the severity is MEDIUM. A bug... High Unreviewed
CVE-2018-7164 was published May 13, 2022
Node.js: All versions prior to Node.js 6.15.0, 8.14.0, 10.14.0 and 11.3.0: Denial of Service with... High Unreviewed
CVE-2018-12121 was published May 13, 2022
Google Chrome before 17.0.963.46 allows remote attackers to cause a denial of service ... Moderate Unreviewed
CVE-2011-3954 was published May 13, 2022
Git through 2.14.2 mishandles layers of tree objects, which allows remote attackers to cause a... Moderate Unreviewed
CVE-2017-15298 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database