GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
318 advisories
Filter by severity
ClamAV versions prior to 0.101.3 are susceptible to a zip bomb vulnerability where an...
High
Unreviewed
CVE-2019-12625
was published
May 24, 2022
A vulnerability in the Secure Shell (SSH) session management for Cisco Wireless LAN Controller ...
High
Unreviewed
CVE-2019-15262
was published
May 24, 2022
In FreeBSD 12.0-STABLE before r350261, 12.0-RELEASE before 12.0-RELEASE-p8, 11.3-STABLE before...
High
Unreviewed
CVE-2019-5603
was published
May 24, 2022
A denial of service vulnerability was reported in Lenovo System Update before version 5.07.0084...
High
Unreviewed
CVE-2019-6163
was published
May 24, 2022
A vulnerability in the remote access VPN session manager of Cisco Adaptive Security Appliance ...
Moderate
Unreviewed
CVE-2019-1705
was published
May 24, 2022
A vulnerability in the software cryptography module of the Cisco Adaptive Security Virtual...
High
Unreviewed
CVE-2019-1706
was published
May 24, 2022
A vulnerability in the Internet Key Exchange Version 2 Mobility and Multihoming Protocol (MOBIKE)...
High
Unreviewed
CVE-2019-1708
was published
May 24, 2022
drivers/hid/hid-cp2112.c in the Linux kernel 4.9.x before 4.9.9 uses a spinlock without...
Moderate
Unreviewed
CVE-2017-8071
was published
May 17, 2022
Unspecified vulnerability in FFMPEG 0.10 allows remote attackers to cause a denial of service.
High
Unreviewed
CVE-2012-2805
was published
May 17, 2022
The sqlite3VdbeExec function in vdbe.c in SQLite before 3.8.9 does not properly implement...
High
Unreviewed
CVE-2015-3415
was published
May 14, 2022
Improper socket reuse in Apache Tomcat
High
CVE-2022-25762
was published
for
org.apache.tomcat:tomcat
(Maven)
May 14, 2022
An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver...
High
Unreviewed
CVE-2018-8641
was published
May 13, 2022
An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory,...
High
Unreviewed
CVE-2018-8554
was published
May 13, 2022
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to...
High
Unreviewed
CVE-2018-8639
was published
May 13, 2022
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to...
High
Unreviewed
CVE-2018-8562
was published
May 13, 2022
An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory,...
High
Unreviewed
CVE-2018-8561
was published
May 13, 2022
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle...
High
Unreviewed
CVE-2018-8611
was published
May 13, 2022
An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver...
High
Unreviewed
CVE-2018-8484
was published
May 13, 2022
An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory,...
High
Unreviewed
CVE-2018-8485
was published
May 13, 2022
An elevation of privilege vulnerability exists in the way that the Microsoft RemoteFX Virtual GPU...
High
Unreviewed
CVE-2018-8471
was published
May 13, 2022
An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects...
High
Unreviewed
CVE-2018-8497
was published
May 13, 2022
A remote code execution vulnerability exists when Windows Search handles objects in memory, aka ...
High
Unreviewed
CVE-2018-8450
was published
May 13, 2022
An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver...
High
Unreviewed
CVE-2018-8462
was published
May 13, 2022
An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects...
High
Unreviewed
CVE-2018-8455
was published
May 13, 2022
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to...
High
Unreviewed
CVE-2018-8453
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API