GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,241
Erlang
31
GitHub Actions
21
Go
2,010
Maven
5,000+
npm
3,718
NuGet
662
pip
3,389
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
267 advisories
Filter by severity
An information disclosure vulnerability exists when the Windows kernel fails to properly...
Moderate
Unreviewed
CVE-2018-8419
was published
May 13, 2022
An information disclosure vulnerability exists when "Kernel Remote Procedure Call Provider"...
Moderate
Unreviewed
CVE-2018-8407
was published
May 13, 2022
An information disclosure vulnerability exists when the Windows kernel improperly initializes...
Moderate
Unreviewed
CVE-2018-8408
was published
May 13, 2022
An information disclosure vulnerability exists when the Windows kernel improperly initializes...
Moderate
Unreviewed
CVE-2018-8121
was published
May 13, 2022
In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the NBAP dissector could crash. This was...
High
Unreviewed
CVE-2018-7419
was published
May 13, 2022
In Wireshark 2.6.0 to 2.6.2, 2.4.0 to 2.4.8, and 2.2.0 to 2.2.16, the Bluetooth AVDTP dissector...
High
Unreviewed
CVE-2018-16058
was published
May 13, 2022
Incorrect initialization logic of RAR decoder objects in 7-Zip 18.03 and before can lead to usage...
High
Unreviewed
CVE-2018-10115
was published
May 13, 2022
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1...
Moderate
Unreviewed
CVE-2018-0926
was published
May 13, 2022
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1...
Moderate
Unreviewed
CVE-2018-0895
was published
May 13, 2022
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1...
Moderate
Unreviewed
CVE-2018-0897
was published
May 13, 2022
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1...
Moderate
Unreviewed
CVE-2018-0901
was published
May 13, 2022
An information disclosure vulnerability exists when the Windows kernel fails to properly...
Moderate
Unreviewed
CVE-2018-0887
was published
May 13, 2022
Microsoft Office 2010 SP2, Microsoft Office 2013 SP1 and RT SP1, Microsoft Office 2016, and...
Moderate
Unreviewed
CVE-2018-0853
was published
May 13, 2022
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1...
Moderate
Unreviewed
CVE-2018-0814
was published
May 13, 2022
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1...
Moderate
Unreviewed
CVE-2018-0813
was published
May 13, 2022
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1...
Moderate
Unreviewed
CVE-2018-0811
was published
May 13, 2022
The Windows kernel in Windows 7 SP1, Windows Server 2008 SP2 and R2, and Windows Server 2012...
Moderate
Unreviewed
CVE-2018-0810
was published
May 13, 2022
The Windows kernel in Windows 10 version 1703. Windows 10 version 1709, and Windows Server,...
Moderate
Unreviewed
CVE-2018-0745
was published
May 13, 2022
The Windows kernel in Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511,...
Moderate
Unreviewed
CVE-2018-0746
was published
May 13, 2022
The vmxnet3_complete_packet function in hw/net/vmxnet3.c in QEMU (aka Quick Emulator) allows...
Moderate
Unreviewed
CVE-2016-6836
was published
May 13, 2022
LibVNC before 8b06f835e259652b0ff026898014fc7297ade858 contains CWE-665: Improper Initialization...
High
Unreviewed
CVE-2018-20023
was published
May 13, 2022
LibVNC before 2f5b2ad1c6c99b1ac6482c95844a84d66bb52838 contains multiple weaknesses CWE-665:...
High
Unreviewed
CVE-2018-20022
was published
May 13, 2022
UltraVNC revision 1211 contains multiple memory leaks (CWE-665) in VNC server code, which allows...
High
Unreviewed
CVE-2019-8277
was published
May 13, 2022
Insufficient sanitization of environment variables passed to rsync can bypass the restrictions...
Critical
Unreviewed
CVE-2019-3464
was published
May 13, 2022
The vmnc decoder in the gstreamer does not initialize the render canvas, which allows remote...
High
Unreviewed
CVE-2016-9446
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API