Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,016
Maven
5,000+
npm
3,721
NuGet
662
pip
3,400
Pub
11
RubyGems
890
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+

204 advisories

Loading
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2018-14282 was published May 13, 2022
The CAF demuxer in modules/demux/caf.c in VideoLAN VLC media player 3.0.4 may read memory from an... Critical Unreviewed
CVE-2018-19857 was published May 14, 2022
GE CIMPICITY versions 2022 and prior is vulnerable when data from a faulting address controls... High Unreviewed
CVE-2022-3084 was published Dec 8, 2022
It was discovered in gnutls before version 3.6.7 upstream that there is an uninitialized pointer... High Unreviewed
CVE-2019-3836 was published May 14, 2022
GE CIMPICITY versions 2022 and prior is vulnerable when data from a faulting address controls... High Unreviewed
CVE-2022-2952 was published Dec 8, 2022
Mozilla Firefox before 32.0, Firefox ESR 31.x before 31.1, and Thunderbird 31.x before 31.1 do... Moderate Unreviewed
CVE-2014-1564 was published May 14, 2022
A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device in versions prior... Moderate Unreviewed
CVE-2021-3608 was published Feb 25, 2022
In the MDSS driver in all Android releases(Android for MSM, Firefox OS for MSM, QRD Android) from... Moderate Unreviewed
CVE-2018-5860 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and... High Unreviewed
CVE-2016-10447 was published May 14, 2022
An Access of Uninitialized Pointer vulnerability in SIP Application Layer Gateway (ALG) of... High Unreviewed
CVE-2022-22236 was published Oct 18, 2022
A access of uninitialized pointer in Fortinet FortiOS version 7.2.0, 7.0.0 through 7.0.5, 6.4.0... High Unreviewed
CVE-2022-29055 was published Oct 18, 2022
A remote code execution vulnerability in HPE intelligent Management Center (iMC) PLAT version... Critical Unreviewed
CVE-2017-12561 was published May 14, 2022
The Triangle Microworks IEC 61850 Library (Any client or server using the C language library with... High Unreviewed
CVE-2022-38138 was published Oct 12, 2022
An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017... High Unreviewed
CVE-2017-16378 was published May 17, 2022
An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017... High Unreviewed
CVE-2017-16377 was published May 17, 2022
A vulnerability has been identified in JTTK (All versions < V11.1.1.0), Simcenter Femap V2022.1 ... High Unreviewed
CVE-2022-41851 was published Oct 11, 2022
The IPersistPropertyBag2::Read function in QTPlugin.ocx in Apple QuickTime 6.x, 7.x before 7.6.8,... High Unreviewed
CVE-2010-1818 was published May 17, 2022
Access of uninitialized pointer in the Intel(R) Trace Analyzer and Collector before version 2021... Moderate Unreviewed
CVE-2022-21156 was published Feb 11, 2022
A flaw was found in Poppler in the way certain PDF files were converted into HTML. A remote... High Unreviewed
CVE-2020-27778 was published May 24, 2022
Invalid drop of partially-initialized instances in the pooling instance allocator for modules with defined `externref` globals Moderate
CVE-2022-23636 was published for wasmtime (Rust) Feb 16, 2022
peterhuene
A flaw was found in the opj2_decompress program in openjpeg2 2.4.0 in the way it handles an input... Moderate Unreviewed
CVE-2022-1122 was published Mar 30, 2022
A vulnerability has been identified in Solid Edge SE2022 (All versions < V2210Update12), Solid... High Unreviewed
CVE-2023-24561 was published Feb 14, 2023
A vulnerability has been identified in Tecnomatix Plant Simulation (All versions < V2201.0006).... High Unreviewed
CVE-2023-24978 was published Feb 14, 2023
A vulnerability has been identified in Solid Edge SE2022 (All versions < V2210Update12), Solid... High Unreviewed
CVE-2023-24562 was published Feb 14, 2023
A vulnerability has been identified in Solid Edge SE2022 (All versions < V2210Update12), Solid... High Unreviewed
CVE-2023-24563 was published Feb 14, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database