Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

11,563 advisories

Loading
Cisco IOS 12.0 through 15.6, Adaptive Security Appliance (ASA) Software 7.0.1 through 9.7.1.2, NX... Moderate Unreviewed
CVE-2017-6770 was published May 13, 2022
Inappropriate use of JIT optimisation in V8 in Google Chrome prior to 61.0.3163.100 for Linux,... High Unreviewed
CVE-2017-5121 was published May 13, 2022
Inappropriate implementation of the web payments API on blob: and data: schemes in Web Payments... Moderate Unreviewed
CVE-2017-5110 was published May 13, 2022
Inappropriate implementation in Blink in Google Chrome prior to 59.0.3071.86 for Mac, Windows,... Moderate Unreviewed
CVE-2017-5079 was published May 13, 2022
Inappropriate implementation of unload handler handling in permission prompts in Google Chrome... Moderate Unreviewed
CVE-2017-5109 was published May 13, 2022
dwarf_leb.c in libdwarf allows attackers to cause a denial of service (SIGSEGV). Moderate Unreviewed
CVE-2015-8538 was published May 13, 2022
PostGIS 2.x before 2.3.3, as used with PostgreSQL, allows remote attackers to cause a denial of... High Unreviewed
CVE-2017-18359 was published May 13, 2022
Insufficient Policy Enforcement in Omnibox in Google Chrome prior to 59.0.3071.104 for Mac... Moderate Unreviewed
CVE-2017-5089 was published May 13, 2022
Inappropriate implementation in modal dialog handling in Blink in Google Chrome prior to 60.0... Moderate Unreviewed
CVE-2017-5093 was published May 13, 2022
Inappropriate implementation in Blink in Google Chrome prior to 59.0.3071.86 for Mac, Windows,... Moderate Unreviewed
CVE-2017-5083 was published May 13, 2022
Insufficient Policy Enforcement in Omnibox in Google Chrome prior to 59.0.3071.86 for Mac,... Moderate Unreviewed
CVE-2017-5076 was published May 13, 2022
Remote code execution in PATCH requests in Spring Data REST Critical
CVE-2017-8046 was published for org.springframework.data:spring-data-rest-core (Maven) May 13, 2022
Lack of verification of an extension's locale folder in Google Chrome prior to 59.0.3071.86 for... Low Unreviewed
CVE-2017-5081 was published May 13, 2022
Insufficient Policy Enforcement in Omnibox in Google Chrome prior to 59.0.3071.86 for Windows and... Moderate Unreviewed
CVE-2017-5086 was published May 13, 2022
Insufficient validation of untrusted input in V8 in Google Chrome prior to 59.0.3071.86 for Linux... Moderate Unreviewed
CVE-2017-5071 was published May 13, 2022
An insufficient watchdog timer in navigation in Google Chrome prior to 58.0.3029.81 for Linux,... Moderate Unreviewed
CVE-2017-5067 was published May 13, 2022
Lack of an appropriate action on page navigation in Blink in Google Chrome prior to 58.0.3029.81... Moderate Unreviewed
CVE-2017-5065 was published May 13, 2022
Inappropriate implementation in interstitials in Google Chrome prior to 60.0.3112.78 for Mac... Moderate Unreviewed
CVE-2017-5104 was published May 13, 2022
Insufficient Policy Enforcement in Omnibox in Google Chrome prior to 60.0.3112.78 for Mac,... Moderate Unreviewed
CVE-2017-5105 was published May 13, 2022
Insufficient Policy Enforcement in Omnibox in Google Chrome prior to 60.0.3112.78 for Mac,... Moderate Unreviewed
CVE-2017-5106 was published May 13, 2022
A vulnerability has been identified in OpenPCS 7 V7.1 and earlier (All versions), OpenPCS 7 V8.0 ... High Unreviewed
CVE-2018-4832 was published May 13, 2022
A vulnerability has been identified in SIMATIC CP 1543-1 (All versions < V2.0.28), SIPLUS NET CP... Moderate Unreviewed
CVE-2016-8562 was published May 13, 2022
A flaw was found in RPC request using gfs3_lookup_req in glusterfs server. An authenticated... High Unreviewed
CVE-2018-10927 was published May 13, 2022
A flaw was found in RPC request using gfs3_mknod_req supported by glusterfs server. An... High Unreviewed
CVE-2018-10926 was published May 13, 2022
nghttp2 version >= 1.10.0 and nghttp2 <= v1.31.0 contains an Improper Input Validation CWE-20... High Unreviewed
CVE-2018-1000168 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database