Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+

343 advisories

Loading
An Improper Check for Unusual or Exceptional Conditions vulnerability exists in the embedded web... High Unreviewed
CVE-2018-7833 was published May 14, 2022
FastStone Image Viewer 6.5 has an Exception Handler Chain Corrupted issue starting at... Moderate Unreviewed
CVE-2018-15815 was published May 14, 2022
In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access in is_mmacro() in asm... Moderate Unreviewed
CVE-2017-17815 was published May 14, 2022
The Linux Kernel 2.6.32 and later are affected by a denial of service, by flooding the diagnostic... High Unreviewed
CVE-2017-1000407 was published May 14, 2022
NVIDIA Jetson TX2 contains a vulnerability in the kernel driver (on all versions prior to R28.3)... Moderate Unreviewed
CVE-2019-5673 was published May 14, 2022
In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, a crafted PNG file could trigger a crash... Moderate Unreviewed
CVE-2017-13142 was published May 14, 2022
fastify vulnerable to denial of service via malicious Content-Type High
CVE-2022-39288 was published for fastify (npm) Oct 11, 2022
B-i-t-K
An issue was discovered in res_http_websocket.c in Asterisk 15.x through 15.2.1. If the HTTP... Moderate Unreviewed
CVE-2018-7287 was published May 13, 2022
Improper check of unusual conditions when launching msiexec.exe in safensec.com (SysWatch service... High Unreviewed
CVE-2018-13013 was published May 13, 2022
Unhandled exception in Content Protection subsystem in Intel CSME before versions 11.8.60, 11.11... Moderate Unreviewed
CVE-2018-12189 was published May 13, 2022
In the Linux kernel before 4.17, a local attacker able to set attributes on an xfs filesystem... Moderate Unreviewed
CVE-2018-18690 was published May 13, 2022
An issue was discovered in Xen through 4.9.x allowing HVM guest OS users to cause a denial of... Moderate Unreviewed
CVE-2017-17044 was published May 13, 2022
An elevation of privilege vulnerability in the Qualcomm sound driver could enable a local... High Unreviewed
CVE-2017-0610 was published May 13, 2022
QFX and EX Series switches configured to drop traffic when the MAC move limit is exceeded will... High Unreviewed
CVE-2018-0005 was published May 13, 2022
Incorrect pointer checks within the NvmExpressDxe driver can allow tampering with SMRAM and OS... High Unreviewed
CVE-2022-29278 was published Nov 16, 2022
The raw_cmd_copyin function in drivers/block/floppy.c in the Linux kernel through 3.14.3 does not... High Unreviewed
CVE-2014-1737 was published May 13, 2022
Zcash, before the Sapling network upgrade (2018-10-28), had a counterfeiting vulnerability. A key... High Unreviewed
CVE-2019-7167 was published May 13, 2022
Failure to check error conditions in V8 in Google Chrome prior to 72.0.3626.81 allowed a remote... High Unreviewed
CVE-2019-5763 was published May 13, 2022
Mattermost 6.0 and earlier fails to sufficiently validate the email address during registration,... Moderate Unreviewed
CVE-2021-37862 was published Dec 18, 2021
Uncaught Exception in mercurius High
CVE-2021-43801 was published for mercurius (npm) Dec 13, 2021
An Improper Check for Unusual or Exceptional Conditions vulnerability in BGP route processing of... High Unreviewed
CVE-2023-22393 was published Jan 13, 2023
Improper check or handling of exception conditions vulnerability in Samsung Pay (US only) prior... Moderate Unreviewed
CVE-2021-25525 was published Dec 9, 2021
Denial of Service (DoS) in mongo-express Moderate
CVE-2021-23372 was published for mongo-express (npm) Oct 6, 2021
Incorrect handling of H2 GOAWAY + SETTINGS frames High
CVE-2021-39162 was published for github.com/pomerium/pomerium (Go) Sep 10, 2021
Authz Module Non-Determinism Moderate
CVE-2021-41135 was published for github.com/cosmos/cosmos-sdk (Go) Oct 21, 2021
robert-zaremba iramiller
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database