GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
166 advisories
Filter by severity
An elevation of privilege vulnerability exists when the Windows Language Pack Installer...
Moderate
Unreviewed
CVE-2020-1122
was published
May 24, 2022
The code for downloading files did not properly take care of special characters, which led to an...
Moderate
Unreviewed
CVE-2020-15658
was published
May 24, 2022
Insufficient policy enforcement in storage in Google Chrome prior to 80.0.3987.87 allowed a...
Moderate
Unreviewed
CVE-2020-6385
was published
May 24, 2022
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon...
Moderate
Unreviewed
CVE-2019-6857
was published
May 24, 2022
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon...
Moderate
Unreviewed
CVE-2019-6856
was published
May 24, 2022
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon...
Moderate
Unreviewed
CVE-2018-7794
was published
May 24, 2022
** DISPUTED ** An issue was discovered in ide_dma_cb() in hw/ide/core.c in QEMU 2.4.0 through 4.2...
Moderate
Unreviewed
CVE-2019-20175
was published
May 24, 2022
Improper conditions check in multiple Intel? Processors may allow an authenticated user to...
Moderate
Unreviewed
CVE-2019-14607
was published
May 24, 2022
Improper conditions check in voltage settings for some Intel(R) Processors may allow an...
Moderate
Unreviewed
CVE-2019-11157
was published
May 24, 2022
A flaw was found in cri-o, as a result of all pod-related processes being placed in the same...
Moderate
Unreviewed
CVE-2019-14891
was published
May 24, 2022
The SRX flowd process, responsible for packet forwarding, may crash and restart when processing...
Moderate
Unreviewed
CVE-2019-0068
was published
May 24, 2022
IrfanView 4.53 allows a Exception Handler Chain to be Corrupted starting at EXR!ReadEXR...
Moderate
Unreviewed
CVE-2019-17257
was published
May 24, 2022
An exploitable denial of service vulnerability exists in the object lookup functionality of Yara...
Moderate
Unreviewed
CVE-2019-5020
was published
May 24, 2022
A CWE-754 Improper Check for Unusual or Exceptional Conditions vulnerability exists in Triconex...
Moderate
Unreviewed
CVE-2018-7803
was published
May 24, 2022
A vulnerability in the Border Gateway Patrol (BGP) Multiprotocol Label Switching (MPLS)-based...
Moderate
Unreviewed
CVE-2019-1849
was published
May 24, 2022
The tiff_document_render() and tiff_document_get_thumbnail() functions in the TIFF document...
Moderate
Unreviewed
CVE-2019-11459
was published
May 24, 2022
In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access in is_mmacro() in asm...
Moderate
Unreviewed
CVE-2017-17815
was published
May 14, 2022
FastStone Image Viewer 6.5 has an Exception Handler Chain Corrupted issue starting at...
Moderate
Unreviewed
CVE-2018-15815
was published
May 14, 2022
NVIDIA Jetson TX2 contains a vulnerability in the kernel driver (on all versions prior to R28.3)...
Moderate
Unreviewed
CVE-2019-5673
was published
May 14, 2022
In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, a crafted PNG file could trigger a crash...
Moderate
Unreviewed
CVE-2017-13142
was published
May 14, 2022
An issue was discovered in res_http_websocket.c in Asterisk 15.x through 15.2.1. If the HTTP...
Moderate
Unreviewed
CVE-2018-7287
was published
May 13, 2022
In the Linux kernel before 4.17, a local attacker able to set attributes on an xfs filesystem...
Moderate
Unreviewed
CVE-2018-18690
was published
May 13, 2022
Unhandled exception in Content Protection subsystem in Intel CSME before versions 11.8.60, 11.11...
Moderate
Unreviewed
CVE-2018-12189
was published
May 13, 2022
An issue was discovered in Xen through 4.9.x allowing HVM guest OS users to cause a denial of...
Moderate
Unreviewed
CVE-2017-17044
was published
May 13, 2022
gio/gsocketclient.c in GNOME GLib 2.59.2 does not ensure that a parent GTask remains alive during...
Moderate
Unreviewed
CVE-2019-9633
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API