Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,939
Maven
5,000+
npm
3,677
NuGet
643
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+

12,746 advisories

Loading
Buffer overflow in the png_read_IDAT_data function in pngrutil.c in libpng before 1.5.21 and 1.6... High Unreviewed
CVE-2015-0973 was published May 17, 2022
Heap-based Buffer Overflow in the de_dotdot function in libhttpd.c in sthttpd before 2.27.1... High Unreviewed
CVE-2017-10671 was published May 17, 2022
A flaw was found in mupdf 1.18.0. Double free of object during linearization may lead to memory... Moderate Unreviewed
CVE-2021-3407 was published May 24, 2022
drivers/usb/core/config.c in the Linux kernel before 4.13.6 allows local users to cause a denial... High Unreviewed
CVE-2017-16531 was published May 14, 2022
The NETGEAR WNR2000v5 router contains a buffer overflow in the hidden_lang_avi parameter when... Critical Unreviewed
CVE-2016-10174 was published May 17, 2022
Microsoft PowerPoint 2007 SP3, Word 2007 SP3, PowerPoint 2010 SP2, Word 2010 SP2, PowerPoint 2013... High Unreviewed
CVE-2015-2424 was published May 14, 2022
The kernel-mode drivers in Transaction Manager in Microsoft Windows Vista SP2; Windows Server... High Unreviewed
CVE-2017-0101 was published May 14, 2022
Use-after-free vulnerability in the ByteArray class in the ActionScript 3 (AS3) implementation in... High Unreviewed
CVE-2015-5119 was published May 17, 2022
Microsoft Office 2007 SP3, 2010 SP2, and 2013 SP1 allows remote attackers to execute arbitrary... High Unreviewed
CVE-2015-1642 was published May 14, 2022
Stack-based buffer overflow in Microsoft Office XP SP3, Office 2003 SP3, Office 2007 SP2, Office... High Unreviewed
CVE-2010-3333 was published May 14, 2022
Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and... Moderate Unreviewed
CVE-2013-1675 was published May 17, 2022
Stack-based buffer overflow in Adobe Acrobat and Reader 8.1.2 and earlier allows remote attackers... High Unreviewed
CVE-2008-2992 was published May 1, 2022
Microsoft Office 2010, SharePoint Enterprise Server 2010, SharePoint Server 2010, Web... High Unreviewed
CVE-2017-11826 was published May 17, 2022
The DHCP relay subsystem of Cisco IOS 12.2 through 15.6 and Cisco IOS XE Software contains a... Critical Unreviewed
CVE-2017-12240 was published May 13, 2022
Windows Fax Service Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38104 was published Jul 9, 2024
Stack-based buffer overflow in the giomgr process in ESRI ArcSDE service 9.2, as used with ArcGIS... High Unreviewed
CVE-2007-4278 was published May 1, 2022
PartialBufferOutputStream2 flush issues Moderate
CVE-2008-7227 was published for org.geoserver.web:gs-web-app (Maven) May 17, 2022 withdrawn
jodygarnett
A flaw was found in LibRaw. A heap-buffer-overflow in raw2image_ex() caused by a maliciously... Moderate Unreviewed
CVE-2023-1729 was published May 16, 2023
JScript 9 in Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary... High Unreviewed
CVE-2015-2419 was published May 14, 2022
The Microsoft (1) JScript 5.8 and (2) VBScript 5.7 and 5.8 engines, as used in Internet Explorer... High Unreviewed
CVE-2016-0189 was published May 14, 2022
Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and... High Unreviewed
CVE-2013-1690 was published May 17, 2022
The EPATHOBJ::pprFlattenRec function in win32k.sys in the kernel-mode drivers in Microsoft... Moderate Unreviewed
CVE-2013-3660 was published May 14, 2022
Stack-based buffer overflow in the RtlQueryRegistryValues function in win32k.sys in Microsoft... High Unreviewed
CVE-2010-4398 was published May 14, 2022
protobuf-cpp and protobuf-python have potential Denial of Service issue High
CVE-2022-1941 was published for protobuf (pip) Sep 23, 2022
kse3hi
A maliciously crafted CATPRODUCT file, when parsed in CC5Dll.dll through Autodesk applications,... High Unreviewed
CVE-2024-23148 was published Jun 25, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database