GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,286
Composer 4,356
Erlang 33
GitHub Actions 22
Go 2,121
Maven 5,299
npm 3,783
NuGet 683
pip 3,465
Pub 12
RubyGems 893
Rust 892
Swift 38

Unreviewed advisories

All unreviewed 244,344

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

271 advisories

Filter by severity

Sort by

Least recently updated

The daemon in P3Scan 3.0_rc1 and earlier creates a p3scan.pid file after dropping privileges to a... Moderate Unreviewed

CVE-2017-14681 was published May 13, 2022

The server daemons in Kannel 1.5.0 and earlier create a PID file after dropping privileges to a... High Unreviewed

CVE-2017-14609 was published May 13, 2022

MIMEDefang 2.80 and earlier creates a PID file after dropping privileges to a non-root account,... High Unreviewed

CVE-2017-14102 was published May 13, 2022

UnrealIRCd 4.0.13 and earlier creates a PID file after dropping privileges to a non-root account,... Moderate Unreviewed

CVE-2017-13649 was published May 13, 2022

An elevation of privilege vulnerability in the Android media framework (libaudioservice). Product... High Unreviewed

CVE-2017-13153 was published May 13, 2022

Nagios Core before 4.3.3 creates a nagios.lock PID file after dropping privileges to a non-root... Moderate Unreviewed

CVE-2017-12847 was published May 13, 2022

A vulnerability has been identified in RUGGEDCOM ROS for RSL910 devices (All versions < ROS V5.0... High Unreviewed

CVE-2017-12736 was published May 13, 2022

Uninitialized data in endianness conversion in the XEvent handling of the X.Org X Server before... Moderate Unreviewed

CVE-2017-10972 was published May 13, 2022

A remote code execution vulnerability in the Android media framework (avc decoder). Product:... High Unreviewed

CVE-2017-0745 was published May 13, 2022

A denial of service vulnerability in the Android media framework (libavc). Product: Android.... Moderate Unreviewed

CVE-2017-0735 was published May 13, 2022

A remote code execution vulnerability in the Android media framework (libavc). Product: Android.... High Unreviewed

CVE-2017-0723 was published May 13, 2022

A remote denial of service vulnerability in libvpx in Mediaserver could enable an attacker to use... High Unreviewed

CVE-2017-0641 was published May 13, 2022

curl before version 7.52.1 is vulnerable to an uninitialized random in libcurl's internal... High Unreviewed

CVE-2016-9594 was published May 13, 2022

A flaw was discovered in gdm 3.24.1 where gdm greeter was no longer setting the ran_once boolean... Moderate Unreviewed

CVE-2017-12164 was published May 13, 2022

A vulnerability within the firewall configuration of the Cisco Application Policy Infrastructure... High Unreviewed

CVE-2017-12262 was published May 13, 2022

Linux kernel vhost since version 4.8 does not properly initialize memory in messages passed... Moderate Unreviewed

CVE-2018-1118 was published May 13, 2022

A vulnerability in the DHCPv6 input packet processor of Cisco Prime Network Registrar could allow... High Unreviewed

CVE-2019-1840 was published May 13, 2022

The network-statistics interface in the kernel in Apple iOS before 8 and Apple TV before 7 does... Low Unreviewed

CVE-2014-4371 was published May 13, 2022

Skia, as used in Google Chrome before 16.0.912.77, does not perform all required initialization... High Unreviewed

CVE-2011-3927 was published May 13, 2022

A vulnerability in the Hot Standby Router Protocol (HSRP) subsystem of Cisco IOS and IOS XE... Moderate Unreviewed

CVE-2019-1761 was published May 13, 2022

The br_parse_ip_options function in net/bridge/br_netfilter.c in the Linux kernel before 2.6.39... High Unreviewed

CVE-2011-4087 was published May 13, 2022

drivers/scsi/bfa/bfa_core.c in the Linux kernel before 2.6.35 does not initialize a certain port... Moderate Unreviewed

CVE-2010-4343 was published May 13, 2022

net/core/ethtool.c in the Linux kernel before 2.6.36 does not initialize certain data structures,... Moderate Unreviewed

CVE-2010-4655 was published May 13, 2022

A memory initialization issue was addressed with improved memory handling. This issue is fixed in... High Unreviewed

CVE-2019-6230 was published May 13, 2022

A memory initialization issue was addressed with improved memory handling. This issue is fixed in... Moderate Unreviewed

CVE-2019-6208 was published May 13, 2022

Previous 1 2 … 6 7 8 9 10 11 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

271 advisories