Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,942
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+

387 advisories

Loading
XML external entity (XXE) vulnerability in the WebHMI server in Yokogawa Electric Corporation... Low Unreviewed
CVE-2014-7251 was published May 17, 2022
The Host Guest File System (HGFS) in VMware Workstation 10.x before 10.0.5, VMware Player 6.x... Low Unreviewed
CVE-2015-1043 was published May 17, 2022
CFNetwork HTTPProtocol in Apple iOS before 9.2 and OS X before 10.11.2 allows man-in-the-middle... Low Unreviewed
CVE-2015-7094 was published May 17, 2022
The Delete Private Data feature in Opera before 11.01 does not properly implement the "Clear all... Low Unreviewed
CVE-2011-0685 was published May 17, 2022
Array index error in the channelised_fill_sdh_g707_format function in epan/dissectors/packet-erf... Low Unreviewed
CVE-2012-4295 was published May 17, 2022
The dissect_oampdu_event_notification function in epan/dissectors/packet-slowprotocols.c in the... Low Unreviewed
CVE-2013-1572 was published May 17, 2022
The dissect_r3_cmd_alarmconfigure function in epan/dissectors/packet-assa_r3.c in the R3... Low Unreviewed
CVE-2013-1575 was published May 17, 2022
The csnStreamDissector function in epan/dissectors/packet-csn1.c in the CSN.1 dissector in... Low Unreviewed
CVE-2013-1573 was published May 17, 2022
The dissect_bthci_eir_ad_data function in epan/dissectors/packet-bthci_cmd.c in the Bluetooth HCI... Low Unreviewed
CVE-2013-1574 was published May 17, 2022
epan/tvbuff.c in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly validate... Low Unreviewed
CVE-2013-1585 was published May 17, 2022
The dissect_cmstatus_tlv function in plugins/docsis/packet-cmstatus.c in the DOCSIS CM-STATUS... Low Unreviewed
CVE-2013-1580 was published May 17, 2022
The dissect_sip_p_charging_func_addresses function in epan/dissectors/packet-sip.c in the SIP... Low Unreviewed
CVE-2013-1577 was published May 17, 2022
The dissect_pw_eth_heuristic function in epan/dissectors/packet-pw-eth.c in Wireshark 1.6.x... Low Unreviewed
CVE-2013-1578 was published May 17, 2022
The dissect_pft_fec_detailed function in epan/dissectors/packet-dcp-etsi.c in the DCP-ETSI... Low Unreviewed
CVE-2013-1581 was published May 17, 2022
The dissect_version_4_primary_header function in epan/dissectors/packet-dtn.c in the DTN... Low Unreviewed
CVE-2013-1583 was published May 17, 2022
The dissect_version_5_and_6_primary_header function in epan/dissectors/packet-dtn.c in the DTN... Low Unreviewed
CVE-2013-1584 was published May 17, 2022
The slapper function in chkrootkit before 0.50 does not properly quote file paths, which allows... Low Unreviewed
CVE-2014-0476 was published May 17, 2022
The Bluetooth subsystem in Apple OS X before 10.10.5 allows remote attackers to cause a denial of... Low Unreviewed
CVE-2015-3787 was published May 17, 2022
The cleanup_journal_tail function in the Journaling Block Device (JBD) functionality in the Linux... Low Unreviewed
CVE-2011-4132 was published May 14, 2022
Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10,... Low Unreviewed
CVE-2017-17292 was published May 14, 2022
A remote HTTP parameter Pollution vulnerability in HPE Matrix Operating Environment version 7.6... Low Unreviewed
CVE-2016-8535 was published May 14, 2022
The PyGrub boot loader in Xen unstable before changeset 25589:60f09d1ab1fe, 4.2.x, and 4.1.x... Low Unreviewed
CVE-2012-2625 was published May 14, 2022
Incomplete blacklist vulnerability in the chfn function in libuser before 0.56.13-8 and 0.60... Low Unreviewed
CVE-2015-3245 was published May 14, 2022
The sys_recvfrom function in nmbd in Samba 3.6.x before 3.6.24, 4.0.x before 4.0.19, and 4.1.x... Low Unreviewed
CVE-2014-0244 was published May 14, 2022
Jenkins Resource Disposer Plugin allows attacker to stop tracking specified resource Low
CVE-2018-1999037 was published for org.jenkins-ci.plugins:resource-disposer (Maven) May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database