Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,090
Erlang
29
GitHub Actions
19
Go
1,915
Maven
5,000+
npm
3,646
NuGet
638
pip
3,262
Pub
10
RubyGems
870
Rust
821
Swift
35
Unreviewed advisories
All unreviewed
5,000+

402 advisories

Loading
A remote code execution vulnerability in the Android media framework (libstagefright). Product:... High Unreviewed
CVE-2017-0759 was published May 13, 2022
A remote code execution vulnerability in the Android media framework (libhevc). Product: Android.... High Unreviewed
CVE-2017-0762 was published May 13, 2022
A remote code execution vulnerability in the Android media framework (libstagefright). Product:... High Unreviewed
CVE-2017-0760 was published May 13, 2022
An elevation of privilege vulnerability in the Goodix touchscreen driver could enable a local... High Unreviewed
CVE-2017-0622 was published May 13, 2022
Windows Hyper-V in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1,... High Unreviewed
CVE-2017-0193 was published May 13, 2022
A vulnerability in the ingress UDP packet processing functionality of Cisco Virtualized Packet... High Unreviewed
CVE-2017-6678 was published May 13, 2022
fedora-arm-installer up to and including 1.99.16 is vulnerable to local privilege escalation due... High Unreviewed
CVE-2017-7496 was published May 13, 2022
A flaw was found in the Linux kernel before version 4.12 in the way the KVM module processed the... High Unreviewed
CVE-2017-7518 was published May 13, 2022
Certain 802.11 network management messages have been determined to invoke wireless access point... Moderate Unreviewed
CVE-2017-9658 was published May 13, 2022
Under specific 802.11 network conditions, a partial re-association of the Philips IntelliVue MX40... Moderate Unreviewed
CVE-2017-9657 was published May 13, 2022
A vulnerability in the Secure Sockets Layer (SSL) Engine of Cisco Firepower System Software could... Moderate Unreviewed
CVE-2018-0272 was published May 13, 2022
A vulnerability in the Session Initiation Protocol (SIP) call-handling functionality of Cisco IP... High Unreviewed
CVE-2018-0316 was published May 13, 2022
A Denial of Service issue was discovered in the LIVE555 Streaming Media libraries as used in... Critical Unreviewed
CVE-2019-6256 was published May 13, 2022
VeryNginx 0.3.3 allows remote attackers to bypass the Web Application Firewall feature because... Critical Unreviewed
CVE-2018-19991 was published May 13, 2022
IBM DataPower Gateways 7.1, 7.2, 7.5, 7.5.1, 7.5.2, 7.6, and 7.7 and IBM MQ Appliance are... Moderate Unreviewed
CVE-2018-1677 was published May 13, 2022
Cloud Foundry Loggregator, versions 89.x prior to 89.5 or 96.x prior to 96.1 or 99.x prior to 99... Moderate Unreviewed
CVE-2018-1269 was published May 13, 2022
Failure condition is not handled properly and the correct error code is not returned. It could... High Unreviewed
CVE-2018-11921 was published May 13, 2022
A vulnerability in the Bidirectional Forwarding Detection (BFD) offload implementation of Cisco... High Unreviewed
CVE-2018-0155 was published May 13, 2022
A vulnerability in the netconf interface of Cisco IOS XR Software could allow an unauthenticated,... Moderate Unreviewed
CVE-2018-0286 was published May 13, 2022
A vulnerability in SonicWall SonicOS and SonicOSv, allow authenticated read-only admin to leave... Moderate Unreviewed
CVE-2019-7474 was published May 13, 2022
A vulnerability in the detection engine of Cisco Firepower Threat Defense Software could allow an... Moderate Unreviewed
CVE-2019-1691 was published May 13, 2022
OpenStack Neutron's unsupported dport option prevents applying security groups Moderate
CVE-2019-9735 was published for neutron (pip) May 13, 2022
A vulnerability in the web management interface of Cisco Wireless LAN Controller (WLC) Software... High Unreviewed
CVE-2017-3832 was published May 13, 2022
A vulnerability has been identified in SIMATIC CP 443-1 OPC UA (All versions), SIMATIC ET 200SP... High Unreviewed
CVE-2019-6575 was published May 13, 2022
XMLTooling Library Incorrectly Handles Some Exceptions High
CVE-2019-9628 was published for org.opensaml:xmltooling (Maven) May 13, 2022 withdrawn
njuneau-coveo twn
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database