Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

11,321 advisories

Loading
WebAccess/SCADA, WebAccess/SCADA Version 8.3.2 installed on Windows 2008 R2 SP1. Lack of proper... High Unreviewed
CVE-2018-18999 was published May 13, 2022
Two stack-based buffer overflow vulnerabilities have been discovered in CX-One Versions 4.42 and... High Unreviewed
CVE-2018-18993 was published May 13, 2022
A heap corruption in WhatsApp can be caused by a malformed RTP packet being sent after a call is... High Unreviewed
CVE-2018-6344 was published May 13, 2022
LAquis SCADA Versions 4.1.0.3870 and prior has several stack-based buffer overflow... High Unreviewed
CVE-2018-17911 was published May 13, 2022
A stack-based buffer overflow vulnerability has been identified in Teledyne DALSA Sherlock... Critical Unreviewed
CVE-2018-17930 was published May 13, 2022
The function number_format is vulnerable to a heap overflow issue when its second argument (... Critical Unreviewed
CVE-2018-6345 was published May 13, 2022
The dec_clnpass function in libjasper/jpc/jpc_t1dec.c in JasPer 1.900.27 allows remote attackers... Moderate Unreviewed
CVE-2017-5503 was published May 13, 2022
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects... High Unreviewed
CVE-2018-8631 was published May 13, 2022
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects... High Unreviewed
CVE-2018-8570 was published May 13, 2022
A remote code execution vulnerability exists in the way that the scripting engine handles objects... High Unreviewed
CVE-2018-8653 was published May 13, 2022
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects... High Unreviewed
CVE-2018-0870 was published May 13, 2022
Microsoft XML Core Services 3.0, 4.0, 5.0, and 6.0 accesses uninitialized memory locations, which... High Unreviewed
CVE-2012-1889 was published May 13, 2022
An issue was discovered in datafile.c in Gnuplot 5.2.5. This issue allows an attacker to conduct... High Unreviewed
CVE-2018-19490 was published May 13, 2022
rdesktop versions up to and including v1.8.3 contain a Heap-Based Buffer Overflow in function... Critical Unreviewed
CVE-2018-8797 was published May 13, 2022
rdesktop versions up to and including v1.8.3 contain an Integer Overflow that leads to a Heap... Critical Unreviewed
CVE-2018-8795 was published May 13, 2022
rdesktop versions up to and including v1.8.3 contain a Heap-Based Buffer Overflow in function... Critical Unreviewed
CVE-2018-8800 was published May 13, 2022
rdesktop versions up to and including v1.8.3 contain an Integer Overflow that leads to an Out-Of... Critical Unreviewed
CVE-2018-8794 was published May 13, 2022
rdesktop versions up to and including v1.8.3 contain a Heap-Based Buffer Overflow in function... Critical Unreviewed
CVE-2018-8793 was published May 13, 2022
FreeRDP prior to version 2.0.0-rc4 contains an Integer Overflow that leads to a Heap-Based Buffer... Critical Unreviewed
CVE-2018-8787 was published May 13, 2022
FreeRDP prior to version 2.0.0-rc4 contains an Integer Truncation that leads to a Heap-Based... Critical Unreviewed
CVE-2018-8786 was published May 13, 2022
FreeRDP prior to version 2.0.0-rc4 contains a Heap-Based Buffer Overflow in function... Critical Unreviewed
CVE-2018-8785 was published May 13, 2022
In Lantech IDS 2102 2.0 and prior, a stack-based buffer overflow vulnerability has been... Critical Unreviewed
CVE-2018-8865 was published May 13, 2022
Eaton 9000X DriveA versions 2.0.29 and prior has a stack-based buffer overflow vulnerability,... Critical Unreviewed
CVE-2018-8847 was published May 13, 2022
Parsing malformed project files in Omron CX-One versions 4.42 and prior, including the following... High Unreviewed
CVE-2018-8834 was published May 13, 2022
Heap-based buffer overflow vulnerabilities in Advantech WebAccess HMI Designer 2.1.7.32 and prior... High Unreviewed
CVE-2018-8833 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database