Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,941
Erlang
29
GitHub Actions
16
Go
1,722
Maven
4,952
npm
3,481
NuGet
605
pip
3,049
Pub
10
RubyGems
832
Rust
778
Swift
34
Unreviewed advisories
All unreviewed
5,000+

186 advisories

Improper Handling of Exceptional Conditions in Apache Tomcat High
CVE-2017-5664 was published for org.apache.tomcat:tomcat (Maven) May 13, 2022
sunSUNQ
Huawei smart phones LYO-L21 with software LYO-L21C479B107, LYO-L21C479B107 have a privilege... High Unreviewed
CVE-2017-17172 was published May 13, 2022
In Bitmap.ccp if Bitmap.nativeCreate fails an out of memory exception is not thrown leading to a... High Unreviewed
CVE-2017-13199 was published May 13, 2022
The acpi_ns_terminate() function in drivers/acpi/acpica/nsutils.c in the Linux kernel before 4.12... High Unreviewed
CVE-2017-11472 was published May 13, 2022
A remote code execution vulnerability in the Android media framework (libstagefright). Product:... High Unreviewed
CVE-2017-0759 was published May 13, 2022
A remote code execution vulnerability in the Android media framework (libstagefright). Product:... High Unreviewed
CVE-2017-0760 was published May 13, 2022
A remote code execution vulnerability in the Android media framework (libhevc). Product: Android.... High Unreviewed
CVE-2017-0762 was published May 13, 2022
An elevation of privilege vulnerability in the Goodix touchscreen driver could enable a local... High Unreviewed
CVE-2017-0622 was published May 13, 2022
Windows Hyper-V in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1,... High Unreviewed
CVE-2017-0193 was published May 13, 2022
A vulnerability in the ingress UDP packet processing functionality of Cisco Virtualized Packet... High Unreviewed
CVE-2017-6678 was published May 13, 2022
fedora-arm-installer up to and including 1.99.16 is vulnerable to local privilege escalation due... High Unreviewed
CVE-2017-7496 was published May 13, 2022
A flaw was found in the Linux kernel before version 4.12 in the way the KVM module processed the... High Unreviewed
CVE-2017-7518 was published May 13, 2022
A vulnerability in the Session Initiation Protocol (SIP) call-handling functionality of Cisco IP... High Unreviewed
CVE-2018-0316 was published May 13, 2022
Failure condition is not handled properly and the correct error code is not returned. It could... High Unreviewed
CVE-2018-11921 was published May 13, 2022
A vulnerability in the Bidirectional Forwarding Detection (BFD) offload implementation of Cisco... High Unreviewed
CVE-2018-0155 was published May 13, 2022
A vulnerability in the web management interface of Cisco Wireless LAN Controller (WLC) Software... High Unreviewed
CVE-2017-3832 was published May 13, 2022
A vulnerability has been identified in SIMATIC CP 443-1 OPC UA (All versions), SIMATIC ET 200SP... High Unreviewed
CVE-2019-6575 was published May 13, 2022
XMLTooling Library Incorrectly Handles Some Exceptions High
CVE-2019-9628 was published for org.opensaml:xmltooling (Maven) May 13, 2022 withdrawn
njuneau-coveo twn
Uncaught exception in the BIOS firmware for some Intel(R) Processors may allow a privileged user... High Unreviewed
CVE-2021-0190 was published May 13, 2022
Local privilege escalation in Windows products of ESET allows user who is logged into the system... High Unreviewed
CVE-2021-37851 was published May 12, 2022
Privilege escalation vulnerability in Windows products of ESET, spol. s r.o. allows attacker to... High Unreviewed
CVE-2022-27167 was published May 11, 2022
In aee driver, there is a possible reference count mistake due to incorrect error handling. This... High Unreviewed
CVE-2022-20088 was published May 4, 2022
In ion, there is a possible use after free due to incorrect error handling. This could lead to... High Unreviewed
CVE-2022-20111 was published May 4, 2022
pam_ldap in nss_ldap on Red Hat Enterprise Linux 4, Fedora Core 3 and earlier, and possibly other... High Unreviewed
CVE-2006-5170 was published May 1, 2022
Denial of Service in http-swagger High
CVE-2022-24863 was published for github.com/swaggo/http-swagger (Go) Apr 22, 2022
ProTip! Advisories are also available from the GraphQL API