Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+

293 advisories

Loading
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1... Moderate Unreviewed
CVE-2018-0813 was published May 13, 2022
The Windows kernel in Windows 10 version 1703. Windows 10 version 1709, and Windows Server,... Moderate Unreviewed
CVE-2018-0745 was published May 13, 2022
The Windows kernel in Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511,... Moderate Unreviewed
CVE-2018-0746 was published May 13, 2022
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1... Moderate Unreviewed
CVE-2018-0897 was published May 13, 2022
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1... Moderate Unreviewed
CVE-2018-0895 was published May 13, 2022
The Windows kernel in Windows 7 SP1, Windows Server 2008 SP2 and R2, and Windows Server 2012... Moderate Unreviewed
CVE-2018-0810 was published May 13, 2022
Resource Exhaustion Denial of Service in http-proxy-agent Moderate
CVE-2019-10196 was published for http-proxy-agent (npm) Jan 6, 2022
LibVNC before 8b06f835e259652b0ff026898014fc7297ade858 contains CWE-665: Improper Initialization... High Unreviewed
CVE-2018-20023 was published May 13, 2022
LibVNC before 2f5b2ad1c6c99b1ac6482c95844a84d66bb52838 contains multiple weaknesses CWE-665:... High Unreviewed
CVE-2018-20022 was published May 13, 2022
UltraVNC revision 1211 contains multiple memory leaks (CWE-665) in VNC server code, which allows... High Unreviewed
CVE-2019-8277 was published May 13, 2022
Insufficient sanitization of environment variables passed to rsync can bypass the restrictions... Critical Unreviewed
CVE-2019-3464 was published May 13, 2022
The __skb_flow_dissect function in net/core/flow_dissector.c in the Linux kernel before 4.3 does... Critical Unreviewed
CVE-2017-13715 was published May 13, 2022
A vulnerability in ABB ARG600 Wireless Gateway series that could allow an attacker to exploit the... Critical Unreviewed
CVE-2022-0947 was published May 11, 2022
Microsoft Internet Explorer 9 does not properly handle the creation and initialization of string... Moderate Unreviewed
CVE-2012-0012 was published May 4, 2022
Improper initialization in the Intel(R) Data Center Manager software before version 4.1 may allow... Moderate Unreviewed
CVE-2022-24378 was published Aug 19, 2022
Improper initialization in subsystem for Intel(R) CSME versions before12.0.70, 13.0.40, 13.30.10,... High Unreviewed
CVE-2020-8744 was published May 24, 2022
pgjdbc Does Not Check Class Instantiation when providing Plugin Classes High
CVE-2022-21724 was published for org.postgresql:postgresql (Maven) Feb 2, 2022
iSafeBlue
Credited to iSafeBlue
NodeBB vulnerable to account takeover via prototype vulnerability Critical
CVE-2022-46164 was published for nodebb (npm) Dec 5, 2022
stephenbradshaw
Credited to stephenbradshaw
A flaw was found in DPDK version 19.11 and above that allows a malicious guest to cause a... Moderate Unreviewed
CVE-2020-10725 was published May 24, 2022
On the x86-64 architecture, the GNU C Library (aka glibc) before 2.31 fails to ignore the... Low Unreviewed
CVE-2019-19126 was published May 24, 2022
Failure to validate VM_HSAVE_PA during SNP_INIT may result in a loss of memory integrity. High Unreviewed
CVE-2021-26326 was published May 24, 2022
Improper initialization in the installer for some Intel(R) Graphics DCH Drivers for Windows 10... Moderate Unreviewed
CVE-2021-0120 was published May 24, 2022
Improper initialization in firmware for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi in... Moderate Unreviewed
CVE-2021-0053 was published May 24, 2022
A vulnerability in the Protection Against Distributed Denial of Service Attacks feature of Cisco... High Unreviewed
CVE-2021-34697 was published May 24, 2022
Adobe After Effects version 18.2.1 (and earlier) is affected by an Improper input validation... Low Unreviewed
CVE-2021-35995 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database