Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,040 advisories

Loading
In FreeBSD before 11.2-STABLE(r340854) and 11.2-RELEASE-p5, the NFS server lacks a bounds check... High Unreviewed
CVE-2018-17159 was published May 14, 2022
The read_packet function in knc (Kerberised NetCat) before 1.11-1 is vulnerable to denial of... High Unreviewed
CVE-2017-9732 was published May 14, 2022
There is an attempted excessive memory allocation at libxsmm_sparse_csc_reader in... Moderate Unreviewed
CVE-2018-20543 was published May 14, 2022
The control mode (mode 6) functionality in ntpd in NTP before 4.2.8p9 allows remote attackers to... Moderate Unreviewed
CVE-2016-9310 was published May 14, 2022
ntpd in NTP before 4.2.8p9 allows remote attackers to cause a denial of service (reject broadcast... Moderate Unreviewed
CVE-2016-7428 was published May 14, 2022
The broadcast mode replay prevention functionality in ntpd in NTP before 4.2.8p9 allows remote... Moderate Unreviewed
CVE-2016-7427 was published May 14, 2022
An issue was discovered in Bento4 1.5.1-627. There is an attempt at excessive memory allocation... Moderate Unreviewed
CVE-2018-20502 was published May 14, 2022
An issue was discovered in Bento4 1.5.1-627. AP4_Sample::ReadData in Core/Ap4Sample.cpp allows... Moderate Unreviewed
CVE-2018-20186 was published May 14, 2022
Dell EMC RecoverPoint versions prior to 5.1.2.1 and RecoverPoint for VMs versions prior to 5.2.0... High Unreviewed
CVE-2018-15772 was published May 14, 2022
An issue was discovered in WTCMS 1.0. It allows remote attackers to cause a denial of service ... High Unreviewed
CVE-2019-8909 was published May 14, 2022
In WordPress through 4.9.2, unauthenticated attackers can cause a denial of service (resource... High Unreviewed
CVE-2018-6389 was published May 14, 2022
In libavformat/asfdec_f.c in FFmpeg 3.3.3, a DoS in asf_build_simple_index() due to lack of an... High Unreviewed
CVE-2017-14223 was published May 14, 2022
There is a stack consumption issue in md5Round1() located in Decrypt.cc in Xpdf 4.01. It can be... High Unreviewed
CVE-2019-9587 was published May 14, 2022
An issue was discovered in OpenAFS before 1.6.23 and 1.8.x before 1.8.2. Several data types used... High Unreviewed
CVE-2018-16949 was published May 14, 2022
An issue was discovered in Xen through 4.11.x. ARM never properly implemented grant table v2,... Moderate Unreviewed
CVE-2018-15469 was published May 14, 2022
Docker Engine before 18.09 allows attackers to cause a denial of service (dockerd memory... Moderate Unreviewed
CVE-2018-20699 was published May 14, 2022
The i_zval_ptr_dtor function in Zend/zend_variables.h in PHP 7.1.5 allows attackers to cause a... Critical Unreviewed
CVE-2017-9119 was published May 14, 2022
The inet module in FreeBSD 10.2x before 10.2-PRERELEASE, 10.2-BETA2-p2, 10.2-RC1-p1, 10.1x before... High Unreviewed
CVE-2015-1417 was published May 14, 2022
WebKit in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before 9.2.2 allows remote... High Unreviewed
CVE-2016-4592 was published May 14, 2022
A vulnerability has been identified in SIMATIC ET 200SP Open Controller (All versions >= V2.0 and... High Unreviewed
CVE-2018-13805 was published May 14, 2022
The History implementation in WebKit in Apple iOS before 9.3, Safari before 9.1, and tvOS before... Moderate Unreviewed
CVE-2016-1784 was published May 14, 2022
A resource exhaustion issue was addressed with improved input validation. This issue affected... Moderate Unreviewed
CVE-2018-4409 was published May 14, 2022
Rockwell Automation PowerFlex 525 AC Drives 5.001 and earlier allow remote attackers to cause a... Critical Unreviewed
CVE-2018-19282 was published May 14, 2022
A firewall bypass vulnerability in the proxy ARP service of Juniper Networks Junos OS allows an... High Unreviewed
CVE-2019-0033 was published May 14, 2022
When GraphicsMagick 1.3.25 processes a DPX image (with metadata indicating a large width) in... Moderate Unreviewed
CVE-2017-10799 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database