Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,293
Erlang
31
GitHub Actions
21
Go
2,061
Maven
5,000+
npm
3,744
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

269 advisories

Loading
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1... Moderate Unreviewed
CVE-2018-0901 was published May 13, 2022
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1... Moderate Unreviewed
CVE-2018-0814 was published May 13, 2022
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1... Moderate Unreviewed
CVE-2018-0926 was published May 13, 2022
In Wireshark 2.6.0 to 2.6.2, 2.4.0 to 2.4.8, and 2.2.0 to 2.2.16, the Bluetooth AVDTP dissector... High Unreviewed
CVE-2018-16058 was published May 13, 2022
Incorrect initialization logic of RAR decoder objects in 7-Zip 18.03 and before can lead to usage... High Unreviewed
CVE-2018-10115 was published May 13, 2022
Use of Uninitialized Resource in alg_ds Critical
CVE-2020-36432 was published for alg_ds (Rust) Aug 25, 2021
An information disclosure vulnerability exists when the Windows kernel improperly initializes... Moderate Unreviewed
CVE-2018-8121 was published May 13, 2022
An information disclosure vulnerability exists when "Kernel Remote Procedure Call Provider"... Moderate Unreviewed
CVE-2018-8407 was published May 13, 2022
An information disclosure vulnerability exists when Remote Procedure Call runtime improperly... Moderate Unreviewed
CVE-2018-8514 was published May 13, 2022
In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the NBAP dissector could crash. This was... High Unreviewed
CVE-2018-7419 was published May 13, 2022
An information disclosure vulnerability exists when the Windows kernel fails to properly... Moderate Unreviewed
CVE-2019-0782 was published May 13, 2022
An information disclosure vulnerability exists when the Windows kernel fails to properly... Moderate Unreviewed
CVE-2018-8419 was published May 13, 2022
A memory initialization issue was addressed with improved memory handling. This issue is fixed in... High Unreviewed
CVE-2019-6230 was published May 13, 2022
A memory initialization issue was addressed with improved memory handling. This issue is fixed in... Moderate Unreviewed
CVE-2019-6208 was published May 13, 2022
An information disclosure vulnerability exists when the Windows kernel improperly initializes... Moderate Unreviewed
CVE-2019-0663 was published May 13, 2022
An information disclosure vulnerability exists when the Windows kernel improperly initializes... Moderate Unreviewed
CVE-2018-8408 was published May 13, 2022
An information disclosure vulnerability exists when the Windows kernel improperly initializes... Moderate Unreviewed
CVE-2019-0767 was published May 13, 2022
The br_parse_ip_options function in net/bridge/br_netfilter.c in the Linux kernel before 2.6.39... High Unreviewed
CVE-2011-4087 was published May 13, 2022
A vulnerability in the Hot Standby Router Protocol (HSRP) subsystem of Cisco IOS and IOS XE... Moderate Unreviewed
CVE-2019-1761 was published May 13, 2022
Skia, as used in Google Chrome before 16.0.912.77, does not perform all required initialization... High Unreviewed
CVE-2011-3927 was published May 13, 2022
The network-statistics interface in the kernel in Apple iOS before 8 and Apple TV before 7 does... Low Unreviewed
CVE-2014-4371 was published May 13, 2022
A vulnerability in the DHCPv6 input packet processor of Cisco Prime Network Registrar could allow... High Unreviewed
CVE-2019-1840 was published May 13, 2022
A flaw was discovered in gdm 3.24.1 where gdm greeter was no longer setting the ran_once boolean... Moderate Unreviewed
CVE-2017-12164 was published May 13, 2022
curl before version 7.52.1 is vulnerable to an uninitialized random in libcurl's internal... High Unreviewed
CVE-2016-9594 was published May 13, 2022
A vulnerability within the firewall configuration of the Cisco Application Policy Infrastructure... High Unreviewed
CVE-2017-12262 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database