Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,790
Erlang
36
GitHub Actions
29
Go
2,370
Maven
5,000+
npm
3,994
NuGet
720
pip
3,783
Pub
12
RubyGems
927
Rust
982
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

530 advisories

Loading
Use after free in drag and drop in Google Chrome on Linux prior to 87.0.4280.141 allowed a remote... Critical Unreviewed
CVE-2021-21107 was published May 24, 2022
Use after free in payments in Google Chrome prior to 87.0.4280.141 allowed a remote attacker who... Critical Unreviewed
CVE-2021-21109 was published May 24, 2022
Use after free in media in Google Chrome prior to 87.0.4280.141 allowed a remote attacker who had... Critical Unreviewed
CVE-2021-21108 was published May 24, 2022
Use after free in autofill in Google Chrome prior to 87.0.4280.141 allowed a remote attacker who... Critical Unreviewed
CVE-2021-21106 was published May 24, 2022
Use after free in payments in Google Chrome prior to 87.0.4280.66 allowed a remote attacker who... Critical Unreviewed
CVE-2020-16018 was published May 24, 2022
The lifecycle of IPC Actors allows managed actors to outlive their manager actors; and the former... Critical Unreviewed
CVE-2020-26972 was published May 24, 2022
Node.js versions before 10.23.1, 12.20.1, 14.15.4, 15.5.1 are vulnerable to a use-after-free bug... Critical Unreviewed
CVE-2020-8265 was published May 24, 2022
libuci in OpenWrt before 18.06.9 and 19.x before 19.07.5 may encounter a use after free when... Critical Unreviewed
CVE-2020-28951 was published May 24, 2022
A use-after-free in a logging library in WhatsApp for iOS prior to v2.20.111 and WhatsApp... Critical Unreviewed
CVE-2020-1909 was published May 24, 2022
Use after free in printing in Google Chrome prior to 86.0.4240.99 allowed a remote attacker to... Critical Unreviewed
CVE-2020-15993 was published May 24, 2022
A use after free issue was addressed with improved memory management. This issue is fixed in... Critical Unreviewed
CVE-2019-8578 was published May 24, 2022
OpenSLP as used in VMware ESXi (7.0 before ESXi_7.0.1-0.0.16850804, 6.7 before ESXi670-202010401... Critical Unreviewed
CVE-2020-3992 was published May 24, 2022
A use after free issue was addressed with improved memory management. This issue is fixed in iOS... Critical Unreviewed
CVE-2020-9895 was published May 24, 2022
Use after free in video in Google Chrome on Android prior to 85.0.4183.102 allowed a remote... Critical Unreviewed
CVE-2020-6573 was published May 24, 2022
An exploitable code execution vulnerability exists in the processing of multi-part/form-data... Critical Unreviewed
CVE-2019-5096 was published May 24, 2022
Adobe Acrobat and Reader versions , 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2017... Critical Unreviewed
CVE-2019-8214 was published May 24, 2022
Adobe Acrobat and Reader versions , 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2017... Critical Unreviewed
CVE-2019-8212 was published May 24, 2022
Adobe Acrobat and Reader versions , 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2017... Critical Unreviewed
CVE-2019-8221 was published May 24, 2022
Adobe Acrobat and Reader versions, 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2017... Critical Unreviewed
CVE-2019-8220 was published May 24, 2022
Adobe Acrobat and Reader versions , 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2017... Critical Unreviewed
CVE-2019-8215 was published May 24, 2022
Adobe Acrobat and Reader versions , 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2017... Critical Unreviewed
CVE-2019-8211 was published May 24, 2022
Adobe Acrobat and Reader versions , 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2017... Critical Unreviewed
CVE-2019-8213 was published May 24, 2022
Device record of the pairing device used after free during ACL disconnection in Snapdragon Auto,... Critical Unreviewed
CVE-2019-10509 was published May 24, 2022
An exploitable use-after-free vulnerability exists in the way LZW-compressed streams are... Critical Unreviewed
CVE-2019-5066 was published May 24, 2022
Irssi 1.2.x before 1.2.2 has a use-after-free if the IRC server sends a double CAP. Critical Unreviewed
CVE-2019-15717 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database