GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,378
Composer 4,374
Erlang 33
GitHub Actions 22
Go 2,139
Maven 5,314
npm 3,799
NuGet 687
pip 3,478
Pub 12
RubyGems 896
Rust 898
Swift 38

Unreviewed advisories

All unreviewed 245,480

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

12,882 advisories

Filter by severity

Sort by

Least recently updated

wxBitcoin and bitcoind before 0.3.13 do not properly handle bitcoins associated with Bitcoin... Moderate Unreviewed

CVE-2010-5140 was published May 13, 2022

The __hash_open function in hash.c:229 in Mozilla Network Security Services (NSS) allows context... High Unreviewed

CVE-2017-11697 was published May 13, 2022

Heap-based buffer overflow in the __get_page function in lib/dbm/src/h_page.c in Mozilla Network... High Unreviewed

CVE-2017-11698 was published May 13, 2022

In Wireshark 2.6.0, the IEEE 802.11 protocol dissector could crash. This was addressed in epan... High Unreviewed

CVE-2018-11361 was published May 13, 2022

In Wireshark 2.6.0, the RTCP dissector could crash. This was addressed in epan/dissectors/packet... High Unreviewed

CVE-2018-11355 was published May 13, 2022

In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the GSM A DTAP dissector could crash.... High Unreviewed

CVE-2018-11360 was published May 13, 2022

Calling Buffer.fill() or Buffer.alloc() with some parameters can lead to a hang which could... High Unreviewed

CVE-2018-7167 was published May 13, 2022

Multiple buffer overflows in the Syslog server in ManageEngine EventLog Analyzer 6.1 allow remote... High Unreviewed

CVE-2010-4840 was published May 13, 2022

Stack-based buffer overflow in the mk_request_header_process function in mk_request.c in Monkey... Moderate Unreviewed

CVE-2013-3843 was published May 13, 2022

The read_MSAT_body function in ole.c in libxls 1.4.0 has an invalid free that allows attackers to... High Unreviewed

CVE-2018-20452 was published May 13, 2022

ISC DHCP 4.1.2 through 4.2.4 and 4.1-ESV before 4.1-ESV-R6 allows remote attackers to cause a... Moderate Unreviewed

CVE-2012-3571 was published May 13, 2022

Buffer overflow in BlueZ 5.41 and earlier allows an attacker to execute arbitrary code via the... High Unreviewed

CVE-2016-7837 was published May 13, 2022

The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on... Moderate Unreviewed

CVE-2017-8536 was published May 13, 2022

The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on... Moderate Unreviewed

CVE-2017-8537 was published May 13, 2022

The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on... Moderate Unreviewed

CVE-2017-8535 was published May 13, 2022

Siemens SIMATIC S7-400 PN CPU devices with firmware 5.x allow remote attackers to cause a denial... High Unreviewed

CVE-2012-3017 was published May 13, 2022

The WebGL implementation in Google Chrome before 17.0.963.83 does not properly handle CANVAS... Moderate Unreviewed

CVE-2011-3052 was published May 13, 2022

The "apetag.c" file in MP3Gain 1.5.2.r2 has a vulnerability which results in a stack memory... Moderate Unreviewed

CVE-2017-12911 was published May 13, 2022

The GPU process in Google Chrome before 17.0.963.79 allows remote attackers to execute arbitrary... High Unreviewed

CVE-2011-3047 was published May 13, 2022

A vulnerability in the web application for Cisco IP Phones could allow an unauthenticated, remote... High Unreviewed

CVE-2016-1421 was published May 13, 2022

Artifex Software, Inc. MuJS before a0ceaf5050faf419401fe1b83acfa950ec8a8a89 allows context... High Unreviewed

CVE-2016-9136 was published May 13, 2022

The htmlParseNameComplex function in HTMLparser.c in libxml2 allows attackers to cause a denial... Moderate Unreviewed

CVE-2016-2073 was published May 13, 2022

Buffer overflow in the SLPFoldWhiteSpace function in common/slp_compare.c in OpenSLP 2.0 allows... Critical Unreviewed

CVE-2016-7567 was published May 13, 2022

Buffer overflow in APNGDis 2.8 and earlier allows a remote attackers to cause denial of service... Moderate Unreviewed

CVE-2017-6192 was published May 13, 2022

The read_buf function in stream.c in rzip 2.1 allows remote attackers to cause a denial of... High Unreviewed

CVE-2017-8364 was published May 13, 2022

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

12,882 advisories