GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,161
Erlang
30
GitHub Actions
19
Go
1,966
Maven
5,000+
npm
3,694
NuGet
653
pip
3,311
Pub
11
RubyGems
881
Rust
831
Swift
35
Unreviewed advisories
All unreviewed
5,000+
1,301 advisories
Filter by severity
gpsd versions 2.90 to 3.17 and microjson versions 1.0 to 1.3, an open source project, allow a...
High
Unreviewed
CVE-2018-17937
was published
May 13, 2022
A stack buffer overflow flaw was found in the Quick Emulator (QEMU) before 2.9 built with the...
High
Unreviewed
CVE-2017-2630
was published
May 13, 2022
zsh through version 5.4.2 is vulnerable to a stack-based buffer overflow in the exec.c:hashcmd()...
Moderate
Unreviewed
CVE-2018-1071
was published
May 13, 2022
A security flaw was found in the chap_server_compute_md5() function in the ISCSI target code in...
High
Unreviewed
CVE-2018-14633
was published
May 13, 2022
Multiple D-Link devices including the DIR-850L firmware versions 1.14B07 and 2.07.B05 contain a...
High
Unreviewed
CVE-2017-3193
was published
May 13, 2022
Qemu emulator <= 3.0.0 built with the NE2000 NIC emulation support is vulnerable to an integer...
Moderate
Unreviewed
CVE-2018-10839
was published
May 13, 2022
arch/x86/kvm/mmu.c in the Linux kernel through 4.13.5, when nested virtualisation is used, does...
High
Unreviewed
CVE-2017-12188
was published
May 14, 2022
The fcgid_header_bucket_read function in fcgid_bucket.c in the mod_fcgid module before 2.3.6 for...
High
Unreviewed
CVE-2010-3872
was published
May 17, 2022
A vulnerability was found in liblouis, versions 2.5.x before 2.5.4. A stack-based buffer overflow...
High
Unreviewed
CVE-2014-8184
was published
May 17, 2022
A malicious attacker could exploit the interface of the Fieldcomm Group HART-IP (release 1.0.0.0)...
Critical
Unreviewed
CVE-2020-16209
was published
May 20, 2022
A vulnerability has been identified in Teamcenter V12.4 (All versions < V12.4.0.13), Teamcenter...
High
Unreviewed
CVE-2022-24290
was published
May 21, 2022
Annke N48PBB (Network Video Recorder) products of version 3.4.106 build 200422 and prior are...
Critical
Unreviewed
CVE-2021-32941
was published
May 24, 2022
An attacker could send crafted SMTP packets to cause a denial-of-service condition where the...
High
Unreviewed
CVE-2019-10954
was published
May 24, 2022
When receiving calls using WhatsApp on Android, a stack allocation failed to properly account for...
Critical
Unreviewed
CVE-2018-6339
was published
May 24, 2022
When receiving calls using WhatsApp for Android, a missing size check when parsing a sender...
Critical
Unreviewed
CVE-2018-6349
was published
May 24, 2022
When receiving calls using WhatsApp for iOS, a missing size check when parsing a sender-provided...
Critical
Unreviewed
CVE-2018-20655
was published
May 24, 2022
PostgreSQL versions 10.x before 10.9 and versions 11.x before 11.4 are vulnerable to a stack...
High
Unreviewed
CVE-2019-10164
was published
May 24, 2022
Insufficient validation of environment variables in the telnet client supplied in Junos OS can...
High
Unreviewed
CVE-2019-0053
was published
May 24, 2022
NREL EnergyPlus, Versions 8.6.0 and possibly prior versions, The application fails to prevent an...
Moderate
Unreviewed
CVE-2019-10974
was published
May 24, 2022
An elevation of privilege vulnerability exists due to a stack corruption in Windows Subsystem for...
High
Unreviewed
CVE-2019-1185
was published
May 24, 2022
Multiple buffer overflow issues have been identified in Alpha5 Smart Loader: All versions prior...
High
Unreviewed
CVE-2019-13520
was published
May 24, 2022
NDrive(1.2.2).sys in Naver Cloud Explorer has a stack-based buffer overflow, which allows...
High
Unreviewed
CVE-2019-13156
was published
May 24, 2022
An attacker could use a specially crafted project file to overflow the buffer and execute code...
High
Unreviewed
CVE-2019-13518
was published
May 24, 2022
This vulnerability allows remote attackers to execute arbitrary code on affected installations of...
High
Unreviewed
CVE-2019-17145
was published
May 24, 2022
TurboVNC server code contains stack buffer overflow vulnerability in commit prior to...
Critical
Unreviewed
CVE-2019-15683
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API