Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

585 advisories

Loading
Django Denial-of-service possibility with strip_tags High
CVE-2015-2316 was published for Django (pip) May 14, 2022
MarkLee131
VNC server implementation in Quick Emulator (QEMU) 2.11.0 and older was found to be vulnerable to... High Unreviewed
CVE-2017-15124 was published May 14, 2022
WebLog Expert Web Server Enterprise 9.4 allows Remote Denial Of Service (daemon crash) via a long... High Unreviewed
CVE-2018-7582 was published May 13, 2022
Go Ethereum (aka geth) 1.8.19 allows attackers to cause a denial of service (memory consumption)... High Unreviewed
CVE-2018-20421 was published May 13, 2022
A vulnerability in the implementation of Cisco Discovery Protocol functionality in Cisco IOS... High Unreviewed
CVE-2018-15373 was published May 13, 2022
A stack exhaustion vulnerability in the search function of dtSearch 7.90.8538.1 and prior allows... High Unreviewed
CVE-2018-11488 was published May 13, 2022
rpcbind through 0.2.4, LIBTIRPC through 1.0.1 and 1.0.2-rc through 1.0.2-rc3, and NTIRPC through... High Unreviewed
CVE-2017-8779 was published May 13, 2022
In all Qualcomm products with Android releases from CAF using the Linux kernel, kernel memory can... High Unreviewed
CVE-2017-8253 was published May 13, 2022
** DISPUTED ** The GNU Multiple Precision Arithmetic Library (GMP) interfaces for PHP through 7.1... High Unreviewed
CVE-2017-7963 was published May 13, 2022
SAP AS JAVA SSO Authentication Library 2.0 through 3.0 allow remote attackers to cause a denial... High Unreviewed
CVE-2017-7696 was published May 13, 2022
A vulnerability in the TCP throttling process for the GUI of the Cisco Identity Services Engine ... High Unreviewed
CVE-2017-6653 was published May 13, 2022
httpd in OpenBSD allows remote attackers to cause a denial of service (memory consumption) via a... High Unreviewed
CVE-2017-5850 was published May 13, 2022
libplist allows attackers to cause a denial of service (large memory allocation and crash) via... High Unreviewed
CVE-2017-5835 was published May 13, 2022
A STUN server in conjunction with a large number of "webkitRTCPeerConnection" objects can be used... High Unreviewed
CVE-2017-5388 was published May 13, 2022
A vulnerability in the authentication, authorization, and accounting (AAA) implementation of... High Unreviewed
CVE-2017-3883 was published May 13, 2022
Vulnerability in the Oracle iReceivables component of Oracle E-Business Suite (subcomponent: Self... High Unreviewed
CVE-2017-3555 was published May 13, 2022
In ImageMagick 7.0.7-1 Q16, a memory exhaustion vulnerability was found in the function... High Unreviewed
CVE-2017-18028 was published May 13, 2022
ImageMagick 7.0.7-0 has a memory exhaustion issue in ReadSUNImage in coders/sun.c. High Unreviewed
CVE-2017-14531 was published May 13, 2022
ONOS vulnerable to denial of service due to unrestricted NettyMessagingManager payload High
CVE-2017-13763 was published for org.onosproject:onos-base (Maven) May 13, 2022
The C++ symbol demangler routine in cplus-dem.c in libiberty, as distributed in GNU Binutils 2.29... High Unreviewed
CVE-2017-13716 was published May 13, 2022
A vulnerability in the Android media framework (libhevc) related to handling ps_codec_obj memory... High Unreviewed
CVE-2017-13190 was published May 13, 2022
A vulnerability in the Android media framework (libavc) related to handling dec_hdl memory... High Unreviewed
CVE-2017-13189 was published May 13, 2022
The TIFFReadDirEntryArray function in tif_read.c in LibTIFF 4.0.8 mishandles memory allocation... High Unreviewed
CVE-2017-12944 was published May 13, 2022
In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in the function ReadPCXImage... High Unreviewed
CVE-2017-12432 was published May 13, 2022
IBM Tivoli Endpoint Manager could allow a unauthorized user to consume all resources and crash... High Unreviewed
CVE-2017-1227 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database