Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,318
Erlang
31
GitHub Actions
21
Go
2,077
Maven
5,000+
npm
3,746
NuGet
674
pip
3,435
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+

206 advisories

Loading
SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated U3D file received... Moderate Unreviewed
CVE-2020-6321 was published May 24, 2022
An exploitable information disclosure vulnerability exists in the way Nitro Pro 13.9.1.155 does... Moderate Unreviewed
CVE-2020-6093 was published May 24, 2022
In updatehub_probe, right after JSON parsing is complete, objects\[1] is accessed from the output... Moderate Unreviewed
CVE-2020-10060 was published May 24, 2022
An issue was discovered in Pure-FTPd 1.0.49. An uninitialized pointer vulnerability has been... Moderate Unreviewed
CVE-2020-9274 was published May 24, 2022
An exploitable uninitialized pointer vulnerability exists in the Word document parser of the the... High Unreviewed
CVE-2018-3983 was published May 24, 2022
In Rockwell Automation Arena Simulation Software Cat. 9502-Ax, Versions 16.00.00 and earlier, a... High Unreviewed
CVE-2019-13527 was published May 24, 2022
An issue was discovered in PHOENIX CONTACT PC Worx through 1.86, PC Worx Express through 1.86,... High Unreviewed
CVE-2019-12870 was published May 24, 2022
A vulnerability in the internal packet-processing functionality of the Cisco StarOS operating... High Unreviewed
CVE-2019-1869 was published May 24, 2022
WavpackSetConfiguration64 in pack_utils.c in libwavpack.a in WavPack through 5.1.0 has a ... Moderate Unreviewed
CVE-2019-11498 was published May 24, 2022
Access of Uninitialized Pointer in GitHub repository radareorg/radare2 prior to 5.7.0. High Unreviewed
CVE-2022-1809 was published May 22, 2022
A vulnerability has been identified in JT2Go (All versions < V13.3.0.3), Teamcenter Visualization... High Unreviewed
CVE-2022-29033 was published May 21, 2022
Inkscape version 0.19 can access an uninitialized pointer, which may allow an attacker to have... Moderate Unreviewed
CVE-2021-42702 was published May 19, 2022
Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X... High Unreviewed
CVE-2016-1005 was published May 17, 2022
An uninitialized stack variable vulnerability in load_tic_series() in set.c in gnuplot 5.2.rc1... High Unreviewed
CVE-2017-9670 was published May 17, 2022
The IPersistPropertyBag2::Read function in QTPlugin.ocx in Apple QuickTime 6.x, 7.x before 7.6.8,... High Unreviewed
CVE-2010-1818 was published May 17, 2022
An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017... High Unreviewed
CVE-2017-16377 was published May 17, 2022
An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017... High Unreviewed
CVE-2017-16378 was published May 17, 2022
The phar_make_dirstream function in ext/phar/dirstream.c in PHP before 5.6.18 and 7.x before 7.0... High Unreviewed
CVE-2016-4343 was published May 14, 2022
A remote code execution vulnerability in HPE intelligent Management Center (iMC) PLAT version... Critical Unreviewed
CVE-2017-12561 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and... High Unreviewed
CVE-2016-10447 was published May 14, 2022
In the MDSS driver in all Android releases(Android for MSM, Firefox OS for MSM, QRD Android) from... Moderate Unreviewed
CVE-2018-5860 was published May 14, 2022
Microsoft Office 2013 SP1 and 2013 RT SP1 allows remote attackers to execute arbitrary code via a... High Unreviewed
CVE-2015-1770 was published May 14, 2022
Mozilla Firefox before 32.0, Firefox ESR 31.x before 31.1, and Thunderbird 31.x before 31.1 do... Moderate Unreviewed
CVE-2014-1564 was published May 14, 2022
It was discovered in gnutls before version 3.6.7 upstream that there is an uninitialized pointer... High Unreviewed
CVE-2019-3836 was published May 14, 2022
The CAF demuxer in modules/demux/caf.c in VideoLAN VLC media player 3.0.4 may read memory from an... Critical Unreviewed
CVE-2018-19857 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database