GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
661
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
297 advisories
Filter by severity
A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.2...
Critical
Unreviewed
CVE-2017-5804
was published
May 14, 2022
Multiple integer overflows in libgfortran might allow remote attackers to execute arbitrary code...
Critical
Unreviewed
CVE-2014-5044
was published
May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile,...
Critical
Unreviewed
CVE-2016-10494
was published
May 14, 2022
In wma_peer_info_event_handler() in Android for MSM, Firefox OS for MSM, and QRD Android before...
Critical
Unreviewed
CVE-2017-17766
was published
May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Small Cell SoC,...
Critical
Unreviewed
CVE-2016-10412
was published
May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 210...
Critical
Unreviewed
CVE-2016-10407
was published
May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 210...
Critical
Unreviewed
CVE-2016-10475
was published
May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 617...
Critical
Unreviewed
CVE-2016-10478
was published
May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 400...
Critical
Unreviewed
CVE-2015-9219
was published
May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and...
Critical
Unreviewed
CVE-2016-10491
was published
May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and...
Critical
Unreviewed
CVE-2016-10480
was published
May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and...
Critical
Unreviewed
CVE-2015-9220
was published
May 14, 2022
Zend/zend_hash.c in PHP before 7.0.15 and 7.1.x before 7.1.1 mishandles certain cases that...
Critical
Unreviewed
CVE-2017-5340
was published
May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile,...
Critical
Unreviewed
CVE-2015-9201
was published
May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and...
Critical
Unreviewed
CVE-2015-9190
was published
May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile,...
Critical
Unreviewed
CVE-2015-9160
was published
May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 400...
Critical
Unreviewed
CVE-2015-9133
was published
May 14, 2022
In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Mobile SD 210/SD 212/SD...
Critical
Unreviewed
CVE-2017-8275
was published
May 14, 2022
An error in argument length checking in JavaScript, leading to potential integer overflows or...
Critical
Unreviewed
CVE-2016-5297
was published
May 14, 2022
An integer overflow during the parsing of XML using the Expat library. This vulnerability affects...
Critical
Unreviewed
CVE-2016-9063
was published
May 14, 2022
An integer overflow in "createImageBitmap()" was reported through the Pwn2Own contest. The fix...
Critical
Unreviewed
CVE-2017-5428
was published
May 14, 2022
An integer overflow at an unserialize_uep memory allocation site would occur for vim before patch...
Critical
Unreviewed
CVE-2017-6350
was published
May 14, 2022
An integer overflow at a u_read_undo memory allocation site would occur for vim before patch 8.0...
Critical
Unreviewed
CVE-2017-6349
was published
May 14, 2022
An integer overflow to buffer overflow vulnerability exists in the ADSPRPC heap manager in all...
Critical
Unreviewed
CVE-2018-3586
was published
May 14, 2022
The increaseApproval function of a smart contract implementation for Tracto (TRCT), an Ethereum...
Critical
Unreviewed
CVE-2018-14063
was published
May 14, 2022
ProTip!
Advisories are also available from the
GraphQL API