Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,780
Erlang
36
GitHub Actions
29
Go
2,344
Maven
5,000+
npm
3,973
NuGet
719
pip
3,770
Pub
12
RubyGems
923
Rust
978
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,433 advisories

Loading
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10... Critical Unreviewed
CVE-2017-2524 was published May 14, 2022
A Stack Buffer Overflow issue was discovered in 3S-Smart Software Solutions GmbH CODESYS Web... Critical Unreviewed
CVE-2017-6025 was published May 13, 2022
An error within the "parse_tiff_ifd()" function (internal/dcraw_common.cpp) in LibRaw versions... Critical Unreviewed
CVE-2017-6886 was published May 17, 2022
Stack buffer overflow in vshttpd (aka ioos) in HooToo Trip Mate 6 (TM6) firmware 2.000.030 and... Critical Unreviewed
CVE-2017-9026 was published May 17, 2022
A boundary error within the "foveon_load_camf()" function (dcraw_foveon.c) when initializing a... Critical Unreviewed
CVE-2017-6890 was published May 17, 2022
Stack-based buffer overflow in dnstracer through 1.9 allows attackers to cause a denial of... Critical Unreviewed
CVE-2017-9430 was published May 17, 2022
Document Liberation Project libmwaw before 2017-04-08 has an out-of-bounds write caused by a heap... Critical Unreviewed
CVE-2017-9433 was published May 17, 2022
Adobe Flash Player versions 25.0.0.148 and earlier have an exploitable memory corruption... Critical Unreviewed
CVE-2017-3068 was published May 13, 2022
The strescape function in ec_strings.c in Ettercap 0.8.2 allows remote attackers to cause a... Critical Unreviewed
CVE-2017-8366 was published May 17, 2022
libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer overflow in the ReadImage function in... Critical Unreviewed
CVE-2017-9168 was published May 17, 2022
libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer overflow in the ReadImage function in... Critical Unreviewed
CVE-2017-9167 was published May 17, 2022
Buffer overflow in WN-G300R3 firmware Ver.1.03 and earlier allows remote attackers to execute... Critical Unreviewed
CVE-2017-2142 was published May 17, 2022
The UDFclient (before 0.8.8) custom strlcpy implementation has a buffer overflow. UDFclient's... Critical Unreviewed
CVE-2017-8305 was published May 17, 2022
pcre2test.c in PCRE2 10.23 allows remote attackers to cause a denial of service (heap-based... Critical Unreviewed
CVE-2017-8786 was published May 17, 2022
Buffer Overflow in Quest One Identity Privilege Manager for Unix before 6.0.0.061 allows remote... Critical Unreviewed
CVE-2017-6553 was published May 17, 2022
Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable memory corruption... Critical Unreviewed
CVE-2017-3061 was published May 14, 2022
Buffer overflow in Apache Tomcat Connectors (mod_jk) before 1.2.42. Critical Unreviewed
CVE-2016-6808 was published May 14, 2022
Stack-based buffer overflow in SAP NetWeaver 7.0 through 7.5 allows remote attackers to cause a... Critical Unreviewed
CVE-2016-10311 was published May 14, 2022
fastping.c in MRLG (aka Multi-Router Looking Glass) before 5.5.0 allows remote attackers to cause... Critical Unreviewed
CVE-2014-3931 was published May 17, 2022
VideoLAN VLC media player before 2.1.5 allows remote attackers to execute arbitrary code or cause... Critical Unreviewed
CVE-2014-6440 was published May 17, 2022
The ssh_agent_channel_data function in PuTTY before 0.68 allows remote attackers to have... Critical Unreviewed
CVE-2017-6542 was published May 14, 2022
Buffer overflow in the git_pkt_parse_line function in transports/smart_pkt.c in the Git Smart... Critical Unreviewed
CVE-2016-10128 was published May 17, 2022
Heap-based buffer overflow in the js_stackoverflow function in jsrun.c in Artifex Software, Inc.... Critical Unreviewed
CVE-2016-10133 was published May 17, 2022
A buffer overflow vulnerability in Disk Sorter Enterprise 9.5.12 and earlier allows remote... Critical Unreviewed
CVE-2017-7230 was published May 17, 2022
ihex.c in GNU Binutils before 2.26 contains a stack buffer overflow when printing bad bytes in... Critical Unreviewed
CVE-2014-9939 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database