GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,939
Maven
5,000+
npm
3,677
NuGet
643
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
12,746 advisories
Filter by severity
Buffer overflow in the png_read_IDAT_data function in pngrutil.c in libpng before 1.5.21 and 1.6...
High
Unreviewed
CVE-2015-0973
was published
May 17, 2022
Heap-based Buffer Overflow in the de_dotdot function in libhttpd.c in sthttpd before 2.27.1...
High
Unreviewed
CVE-2017-10671
was published
May 17, 2022
A flaw was found in mupdf 1.18.0. Double free of object during linearization may lead to memory...
Moderate
Unreviewed
CVE-2021-3407
was published
May 24, 2022
drivers/usb/core/config.c in the Linux kernel before 4.13.6 allows local users to cause a denial...
High
Unreviewed
CVE-2017-16531
was published
May 14, 2022
The NETGEAR WNR2000v5 router contains a buffer overflow in the hidden_lang_avi parameter when...
Critical
Unreviewed
CVE-2016-10174
was published
May 17, 2022
Microsoft PowerPoint 2007 SP3, Word 2007 SP3, PowerPoint 2010 SP2, Word 2010 SP2, PowerPoint 2013...
High
Unreviewed
CVE-2015-2424
was published
May 14, 2022
The kernel-mode drivers in Transaction Manager in Microsoft Windows Vista SP2; Windows Server...
High
Unreviewed
CVE-2017-0101
was published
May 14, 2022
Use-after-free vulnerability in the ByteArray class in the ActionScript 3 (AS3) implementation in...
High
Unreviewed
CVE-2015-5119
was published
May 17, 2022
Microsoft Office 2007 SP3, 2010 SP2, and 2013 SP1 allows remote attackers to execute arbitrary...
High
Unreviewed
CVE-2015-1642
was published
May 14, 2022
Stack-based buffer overflow in Microsoft Office XP SP3, Office 2003 SP3, Office 2007 SP2, Office...
High
Unreviewed
CVE-2010-3333
was published
May 14, 2022
Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and...
Moderate
Unreviewed
CVE-2013-1675
was published
May 17, 2022
Stack-based buffer overflow in Adobe Acrobat and Reader 8.1.2 and earlier allows remote attackers...
High
Unreviewed
CVE-2008-2992
was published
May 1, 2022
Microsoft Office 2010, SharePoint Enterprise Server 2010, SharePoint Server 2010, Web...
High
Unreviewed
CVE-2017-11826
was published
May 17, 2022
The DHCP relay subsystem of Cisco IOS 12.2 through 15.6 and Cisco IOS XE Software contains a...
Critical
Unreviewed
CVE-2017-12240
was published
May 13, 2022
Windows Fax Service Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-38104
was published
Jul 9, 2024
Stack-based buffer overflow in the giomgr process in ESRI ArcSDE service 9.2, as used with ArcGIS...
High
Unreviewed
CVE-2007-4278
was published
May 1, 2022
PartialBufferOutputStream2 flush issues
Moderate
CVE-2008-7227
was published
for
org.geoserver.web:gs-web-app
(Maven)
May 17, 2022
•
withdrawn
A flaw was found in LibRaw. A heap-buffer-overflow in raw2image_ex() caused by a maliciously...
Moderate
Unreviewed
CVE-2023-1729
was published
May 16, 2023
JScript 9 in Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary...
High
Unreviewed
CVE-2015-2419
was published
May 14, 2022
The Microsoft (1) JScript 5.8 and (2) VBScript 5.7 and 5.8 engines, as used in Internet Explorer...
High
Unreviewed
CVE-2016-0189
was published
May 14, 2022
Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and...
High
Unreviewed
CVE-2013-1690
was published
May 17, 2022
The EPATHOBJ::pprFlattenRec function in win32k.sys in the kernel-mode drivers in Microsoft...
Moderate
Unreviewed
CVE-2013-3660
was published
May 14, 2022
Stack-based buffer overflow in the RtlQueryRegistryValues function in win32k.sys in Microsoft...
High
Unreviewed
CVE-2010-4398
was published
May 14, 2022
protobuf-cpp and protobuf-python have potential Denial of Service issue
High
CVE-2022-1941
was published
for
protobuf
(pip)
Sep 23, 2022
A maliciously crafted CATPRODUCT file, when parsed in CC5Dll.dll through Autodesk applications,...
High
Unreviewed
CVE-2024-23148
was published
Jun 25, 2024
ProTip!
Advisories are also available from the
GraphQL API