Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,785
Erlang
36
GitHub Actions
29
Go
2,358
Maven
5,000+
npm
3,979
NuGet
720
pip
3,777
Pub
12
RubyGems
924
Rust
981
Swift
38
Unreviewed advisories
All unreviewed
5,000+

186 advisories

Loading
pg-native and libpq vulnerable to uncontrolled resource consumption High
CVE-2022-25852 was published for libpq (npm) Jun 18, 2022
joshbressers
In ImageMagick, there is load of misaligned address for type 'double', which requires 8 byte... High Unreviewed
CVE-2022-32547 was published Jun 17, 2022
Possible out of bounds read due to improper typecasting while handling page fault for global... High Unreviewed
CVE-2021-35091 was published Jun 15, 2022
Incorrect pointer argument passed to trusted application TA could result in un-intended memory... High Unreviewed
CVE-2021-1923 was published May 24, 2022
Type confusion in Gallagher Command Centre Server allows a remote attacker to crash the server or... High Unreviewed
CVE-2020-16103 was published May 24, 2022
A type confusion vulnerability in the Autodesk FBX-SDK versions 2019.0 and earlier may lead to... High Unreviewed
CVE-2020-7081 was published May 24, 2022
An exploitable use-after-free vulnerability exists in the Length parsing function of NitroPDF. A... High Unreviewed
CVE-2019-5053 was published May 24, 2022
Incorrect Privilege Assignment in Jenkins Script Security Plugin High
CVE-2019-10355 was published for org.jenkins-ci.plugins:script-security (Maven) May 24, 2022
Type confusion in WebRTC in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to... High Unreviewed
CVE-2018-6157 was published May 24, 2022
Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and... High Unreviewed
CVE-2017-2962 was published May 17, 2022
An issue was discovered in certain Apple products. iOS before 10.2 is affected. macOS before 10... High Unreviewed
CVE-2016-7655 was published May 17, 2022
WindowServer in Apple OS X before 10.12 allows local users to obtain root access via vectors that... High Unreviewed
CVE-2016-4710 was published May 17, 2022
WindowServer in Apple OS X before 10.12 allows local users to obtain root access via vectors that... High Unreviewed
CVE-2016-4709 was published May 17, 2022
An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue... High Unreviewed
CVE-2016-7617 was published May 17, 2022
readelf.c in GNU Binutils 2017-04-12 has a "cannot be represented in type long" issue, which... High Unreviewed
CVE-2017-9042 was published May 17, 2022
Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X... High Unreviewed
CVE-2015-3120 was published May 17, 2022
Microsoft Internet Explorer 10 and 11 and Microsoft Edge have a type confusion issue in the... High Unreviewed
CVE-2017-0037 was published May 17, 2022
Some Huawei smartphones with software AGS-L09C233B019,AGS-W09C233B019,KOB-L09C233B017,KOB... High Unreviewed
CVE-2017-8159 was published May 17, 2022
An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017... High Unreviewed
CVE-2017-16367 was published May 17, 2022
An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017... High Unreviewed
CVE-2017-16379 was published May 17, 2022
Type Confusion in Content Protection HECI Service in Intel Graphics Driver allows unprivileged... High Unreviewed
CVE-2017-5717 was published May 14, 2022
Type confusion in V8 in Google Chrome prior to 61.0.3163.79 for Windows allowed a remote attacker... High Unreviewed
CVE-2017-5115 was published May 14, 2022
The .sethalftone5 function in psi/zht2.c in Ghostscript before 9.21 allows remote attackers to... High Unreviewed
CVE-2016-8602 was published May 14, 2022
Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable type confusion... High Unreviewed
CVE-2017-2995 was published May 14, 2022
Artifex Ghostscript through 2017-04-26 allows -dSAFER bypass and remote command execution via ... High Unreviewed
CVE-2017-8291 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database