GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,161
Erlang
30
GitHub Actions
19
Go
1,966
Maven
5,000+
npm
3,694
NuGet
653
pip
3,311
Pub
11
RubyGems
881
Rust
831
Swift
35
Unreviewed advisories
All unreviewed
5,000+
113 advisories
Filter by severity
Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, Acrobat and Acrobat Reader...
Low
Unreviewed
CVE-2015-7829
was published
May 13, 2022
Buffer overflow in the msTmpFile function in maputil.c in mapserv in MapServer before 4.10.6 and...
Low
Unreviewed
CVE-2010-2539
was published
May 13, 2022
/opt/novell/ncl/bin/nwrights in Novell Client for Linux in Novell Open Enterprise Server (OES) 11...
Low
Unreviewed
CVE-2014-0595
was published
May 13, 2022
MySQL 5.1.x before 5.1.62 and 5.5.x before 5.5.22 allows remote authenticated users to cause a...
Low
Unreviewed
CVE-2012-2102
was published
May 13, 2022
The ourWriteOut function in tool_writeout.c in curl 7.53.1 might allow physically proximate...
Low
Unreviewed
CVE-2017-7407
was published
May 13, 2022
The eSpace Meeting ActiveX control (eSpaceStatusCtrl.dll) in Huawei eSpace Desktop before...
Low
Unreviewed
CVE-2014-9418
was published
May 14, 2022
Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8,...
Low
Unreviewed
CVE-2015-1681
was published
May 14, 2022
PuTTY 0.59 through 0.61 does not clear sensitive process memory when managing user replies that...
Low
Unreviewed
CVE-2011-4607
was published
May 14, 2022
The _expand_arg function in the pam_env module (modules/pam_env/pam_env.c) in Linux-PAM (aka pam)...
Low
Unreviewed
CVE-2011-3149
was published
May 14, 2022
Buffer overflow in text-utils/colcrt.c in colcrt in util-linux before 2.27 allows local users to...
Low
Unreviewed
CVE-2015-5218
was published
May 14, 2022
The bmexec_trans function in kwset.c in grep 2.19 through 2.21 allows local users to cause a...
Low
Unreviewed
CVE-2015-1345
was published
May 14, 2022
Buffer overflow in srtp.c in libsrtp in srtp 1.4.5 and earlier allows remote attackers to cause a...
Low
Unreviewed
CVE-2013-2139
was published
May 14, 2022
Stack-based buffer overflow in socat 1.3.0.0 through 1.7.2.2 and 2.0.0-b1 through 2.0.0-b6 allows...
Low
Unreviewed
CVE-2014-0019
was published
May 14, 2022
The mod_dav_svn Apache HTTPD server module in Subversion 1.6.x before 1.6.21 and 1.7.0 through 1...
Low
Unreviewed
CVE-2013-1845
was published
May 14, 2022
The CSN.1 dissector in Wireshark 1.8.x before 1.8.6 does not properly manage function pointers,...
Low
Unreviewed
CVE-2013-2477
was published
May 14, 2022
The query_findclosestnsec3 function in query.c in named in ISC BIND 9.6, 9.7, and 9.8 before 9.8...
Low
Unreviewed
CVE-2014-0591
was published
May 14, 2022
Buffer overflow in Xen 4.4.x allows local users to read system memory or cause a denial of...
Low
Unreviewed
CVE-2014-3715
was published
May 14, 2022
Xen 3.2.x through 4.4.x does not properly clean memory pages recovered from guests, which allows...
Low
Unreviewed
CVE-2014-4021
was published
May 14, 2022
Heap-based buffer overflow in the MPV_frame_start function in libavcodec/mpegvideo.c in FFmpeg...
Low
Unreviewed
CVE-2012-0856
was published
May 14, 2022
The Dumper method in Data::Dumper before 2.154, as used in Perl 5.20.1 and earlier, allows...
Low
Unreviewed
CVE-2014-4330
was published
May 14, 2022
The push_ascii function in smbd in Samba 3.6.x before 3.6.24, 4.0.x before 4.0.19, and 4.1.x...
Low
Unreviewed
CVE-2014-3493
was published
May 14, 2022
SCCP (Signalling Connection Control Part) module in Huawei DP300 V500R002C00, RP200 V500R002C00,...
Low
Unreviewed
CVE-2017-17282
was published
May 14, 2022
Huawei eNSP software with software of versions earlier than V100R002C00B510 has a buffer overflow...
Low
Unreviewed
CVE-2017-17321
was published
May 14, 2022
memcached before 1.4.17, when running in verbose mode, allows remote attackers to cause a denial...
Low
Unreviewed
CVE-2013-7291
was published
May 14, 2022
The do_item_get function in items.c in memcached 1.4.4 and other versions before 1.4.17, when...
Low
Unreviewed
CVE-2013-7290
was published
May 14, 2022
ProTip!
Advisories are also available from the
GraphQL API