Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

11,321 advisories

Loading
OpenEXR invalid write High
CVE-2017-9111 was published for OpenEXR (pip) May 13, 2022
AVEVA InduSoft Web Studio v8.1 and v8.1SP1, and InTouch Machine Edition v2017 8.1 and v2017 8.1... Critical Unreviewed
CVE-2018-10620 was published May 13, 2022
pdns before version 4.1.2 is vulnerable to a buffer overflow in dnsreplay. In the dnsreplay tool... High Unreviewed
CVE-2018-1046 was published May 13, 2022
CNCSoft Version 1.00.83 and prior with ScreenEditor Version 1.00.54 has multiple stack-based... High Unreviewed
CVE-2018-10636 was published May 13, 2022
A vulnerability in the DHCP option 82 encapsulation functionality of Cisco IOS Software and Cisco... High Unreviewed
CVE-2018-0172 was published May 13, 2022
A vulnerability in the Smart Install feature of Cisco IOS Software and Cisco IOS XE Software... Critical Unreviewed
CVE-2018-0171 was published May 13, 2022
Stack-based buffer overflow in hw/scsi/scsi-bus.c in QEMU, when built with SCSI-device emulation... Moderate Unreviewed
CVE-2015-5158 was published May 13, 2022
procps-ng before version 3.3.15 is vulnerable to a stack buffer overflow in pgrep. This... High Unreviewed
CVE-2018-1125 was published May 13, 2022
This vulnerability allows local attackers to escalate privileges on vulnerable installations of... High Unreviewed
CVE-2018-1165 was published May 13, 2022
procps-ng before version 3.3.15 is vulnerable to multiple integer overflows leading to a heap... High Unreviewed
CVE-2018-1124 was published May 13, 2022
A heap-based buffer overflow exists in stbi__bmp_load_cont in stb_image.h in catimg 2.4.0. Critical Unreviewed
CVE-2018-13794 was published May 13, 2022
Stack-based buffer overflow in the megasas_ctrl_get_info function in QEMU, when built with SCSI... Moderate Unreviewed
CVE-2015-8613 was published May 13, 2022
A vulnerability in the Secure/Multipurpose Internet Mail Extensions (S/MIME) Decryption and... High Unreviewed
CVE-2018-15453 was published May 13, 2022
A vulnerability in the Cisco Webex Network Recording Player for Microsoft Windows and the Cisco... High Unreviewed
CVE-2018-15419 was published May 13, 2022
A vulnerability in the Cisco Webex Network Recording Player for Microsoft Windows and the Cisco... High Unreviewed
CVE-2018-15422 was published May 13, 2022
A vulnerability in the Cisco Webex Network Recording Player for Microsoft Windows and the Cisco... High Unreviewed
CVE-2018-15421 was published May 13, 2022
A vulnerability in the Cisco Webex Network Recording Player for Microsoft Windows and the Cisco... High Unreviewed
CVE-2018-15431 was published May 13, 2022
A Stack-based Buffer Overflow issue was discovered in 3S-Smart CODESYS Web Server. Specifically:... Critical Unreviewed
CVE-2018-5440 was published May 13, 2022
A Stack-based Buffer Overflow issue was discovered in Delta Electronics Delta Industrial... High Unreviewed
CVE-2018-5476 was published May 13, 2022
A Stack-based Buffer Overflow issue was discovered in GE D60 Line Distance Relay devices running... Critical Unreviewed
CVE-2018-5475 was published May 13, 2022
A Stack-based Buffer Overflow issue was discovered in Fuji Electric V-Server VPR 4.0.1.0 and... Critical Unreviewed
CVE-2018-5442 was published May 13, 2022
In Delta Industrial Automation TPEditor, TPEditor Versions 1.90 and prior, multiple stack-based... High Unreviewed
CVE-2018-17929 was published May 13, 2022
A Stack-based Buffer Overflow issue was discovered in Emerson Process Management ControlWave... High Unreviewed
CVE-2018-5452 was published May 13, 2022
Dokan, versions between 1.0.0.5000 and 1.2.0.1000, are vulnerable to a stack-based buffer... High Unreviewed
CVE-2018-5410 was published May 13, 2022
In Foxit Quick PDF Library (all versions prior to 16.12), issue where loading a malformed or... High Unreviewed
CVE-2018-20247 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database