Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,743
Erlang
35
GitHub Actions
29
Go
2,318
Maven
5,000+
npm
3,950
NuGet
711
pip
3,730
Pub
12
RubyGems
920
Rust
965
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

213 advisories

Loading
The HwNearbyMain module has a Exposure of Sensitive Information to an Unauthorized Actor... High Unreviewed
CVE-2021-39989 was published Jan 4, 2022
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix wrong reg type... Moderate Unreviewed
CVE-2022-49873 was published May 1, 2025
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2017-16572 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2017-14825 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2017-14827 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2017-14824 was published May 13, 2022
Type Confusion in Content Protection HECI Service in Intel Graphics Driver allows unprivileged... High Unreviewed
CVE-2017-5717 was published May 14, 2022
An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10... Moderate Unreviewed
CVE-2017-13855 was published May 14, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2017-16578 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2017-16582 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2017-14835 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2017-16571 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2017-14837 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2017-14829 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2017-14830 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2017-14828 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2017-14823 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2017-14826 was published May 13, 2022
Adobe Flash Player versions 26.0.0.137 and earlier have an exploitable type confusion... High Unreviewed
CVE-2017-3106 was published May 13, 2022
libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in input-bmp.c... Critical Unreviewed
CVE-2017-9183 was published May 17, 2022
Ghostscript before 9.21 might allow remote attackers to bypass the SAFER mode protection... Critical Unreviewed
CVE-2016-7979 was published May 14, 2022
readelf.c in GNU Binutils 2017-04-12 has a "cannot be represented in type long" issue, which... High Unreviewed
CVE-2017-9042 was published May 17, 2022
The .sethalftone5 function in psi/zht2.c in Ghostscript before 9.21 allows remote attackers to... High Unreviewed
CVE-2016-8602 was published May 14, 2022
An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue... High Unreviewed
CVE-2016-7617 was published May 17, 2022
The pvscsi_convert_sglist function in hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows... Moderate Unreviewed
CVE-2016-7156 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database