Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,342
Erlang
31
GitHub Actions
22
Go
2,106
Maven
5,000+
npm
3,764
NuGet
679
pip
3,451
Pub
12
RubyGems
892
Rust
886
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

118 advisories

Loading
Fuji Electric V-Server Lite and Tellus Lite V-Simulator prior to v4.0.12.0 is vulnerable to an... High Unreviewed
CVE-2021-38409 was published Dec 21, 2021
Windows Runtime Remote Code Execution Vulnerability. High Unreviewed
CVE-2022-21971 was published Feb 10, 2022
An Access of Uninitialized Pointer vulnerability in the SIP ALG of Juniper Networks Junos OS... High Unreviewed
CVE-2022-22198 was published Apr 15, 2022
The LDAP server (ns-slapd) in Sun Java System Directory Server 5.2 Patch4 and earlier and ONE... High Unreviewed
CVE-2006-4175 was published May 1, 2022
The RPC library in Kerberos 5 1.4 through 1.4.4, and 1.5 through 1.5.1, as used in Kerberos... High Unreviewed
CVE-2006-6143 was published May 1, 2022
The TrueType Fonts rasterizer in Microsoft Windows 2000 SP4 allows local users to gain privileges... High Unreviewed
CVE-2007-1213 was published May 1, 2022
The kadm5_modify_policy_internal function in lib/kadm5/srv/svr_policy.c in the Kerberos... High Unreviewed
CVE-2007-4000 was published May 1, 2022
The asn1_decode_generaltime function in lib/krb5/asn.1/asn1_decode.c in the ASN.1 GeneralizedTime... High Unreviewed
CVE-2009-0846 was published May 2, 2022
Acrobat Reader DC versions 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012... High Unreviewed
CVE-2022-27794 was published May 12, 2022
An exploitable uninitialized pointer vulnerability exists in the rich text format parser of... High Unreviewed
CVE-2018-4040 was published May 13, 2022
An exploitable uninitialized pointer vulnerability exists in the Office Open XML parser of... High Unreviewed
CVE-2018-4001 was published May 13, 2022
An exploitable use of an uninitialized pointer vulnerability exists in the JavaScript engine in... High Unreviewed
CVE-2018-3842 was published May 13, 2022
Teluu PJSIP version 2.7.1 and earlier contains a Access of Null/Uninitialized Pointer... High Unreviewed
CVE-2018-1000099 was published May 13, 2022
Subversion's mod_dav_svn Apache HTTPD module versions 1.11.0 and 1.10.0 to 1.10.3 will crash... High Unreviewed
CVE-2018-11803 was published May 13, 2022
Amazon Web Services (AWS) FreeRTOS through 1.3.1 has an uninitialized pointer free in... High Unreviewed
CVE-2018-16522 was published May 13, 2022
A remote code execution vulnerability exists in the way that the Windows Graphics Device... High Unreviewed
CVE-2019-0853 was published May 13, 2022
Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly interact with... High Unreviewed
CVE-2011-0479 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2018-9981 was published May 13, 2022
An access of uninitialized pointer vulnerability in CX-Supervisor (Versions 3.42 and prior) could... High Unreviewed
CVE-2018-19018 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2018-14282 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2018-10484 was published May 13, 2022
It was discovered in gnutls before version 3.6.7 upstream that there is an uninitialized pointer... High Unreviewed
CVE-2019-3836 was published May 14, 2022
Microsoft Office 2013 SP1 and 2013 RT SP1 allows remote attackers to execute arbitrary code via a... High Unreviewed
CVE-2015-1770 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and... High Unreviewed
CVE-2016-10447 was published May 14, 2022
The phar_make_dirstream function in ext/phar/dirstream.c in PHP before 5.6.18 and 7.x before 7.0... High Unreviewed
CVE-2016-4343 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database