GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,339
Composer 4,133
Erlang 29
GitHub Actions 19
Go 1,940
Maven 5,135
npm 3,677
NuGet 645
pip 3,295
Pub 11
RubyGems 877
Rust 830
Swift 35

Unreviewed advisories

All unreviewed 230,836

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

429 advisories

Filter by severity

Sort by

Least recently updated

Missing release of resource after effective lifetime (CWE-772) in the Controller 7000 resulted... Moderate Unreviewed

CVE-2024-22383 was published Mar 5, 2024

PHP5 before 5.4.4 allows passing invalid utf-8 strings via the xmlTextWriterWriteAttribute, which... High Unreviewed

CVE-2010-4657 was published Apr 21, 2022

Windows NT 4.0 does not properly shut down invalid named pipe RPC connections, which allows... Moderate Unreviewed

CVE-1999-1127 was published Apr 30, 2022

Clam AntiVirus ClamAV before 0.90 does not close open file descriptors under certain conditions,... Moderate Unreviewed

CVE-2007-0897 was published May 1, 2022

IBM Rational Build Forge 7.0.2 allows remote attackers to cause a denial of service (CPU... Moderate Unreviewed

CVE-2008-2122 was published May 1, 2022

When a BIG-IP ASM/Advanced WAF security policy is configured on a virtual server, undisclosed... High Unreviewed

CVE-2024-21789 was published Feb 14, 2024

The IAX2 channel driver (chan_iax2) in Asterisk Open 1.2.x before 1.2.23, 1.4.x before 1.4.9, and... High Unreviewed

CVE-2007-4103 was published May 1, 2022

Racy interactions between dirty vram tracking and paging log dirty hypercalls Activation of log... Moderate Unreviewed

CVE-2022-26356 was published Apr 6, 2022

A vulnerability in the remote access VPN feature of Cisco Adaptive Security Appliance (ASA)... High Unreviewed

CVE-2023-20095 was published Nov 1, 2023

AVEVA PI Server versions 2023 and 2018 SP3 P05 and prior contain a vulnerability that could... Moderate Unreviewed

CVE-2023-31274 was published Jan 18, 2024

in OpenHarmony v3.2.2 and prior versions allow a local attacker cause DOS through occupy all... Low Unreviewed

CVE-2023-47216 was published Jan 2, 2024

Memory leak in the H5O__chunk_deserialize() function in H5Ocache.c in the HDF HDF5 through 1.10.3... Moderate Unreviewed

CVE-2018-17234 was published May 13, 2022

Memory leak in the H5O_dtype_decode_helper() function in H5Odtype.c in the HDF HDF5 through 1.10... Moderate Unreviewed

CVE-2018-17437 was published May 13, 2022

Dell BIOS versions contain a Missing Release of Resource after Effective Lifetime vulnerability.... Moderate Unreviewed

CVE-2022-31222 was published Sep 13, 2022

A vulnerability in the Internet Key Exchange Version 2 (IKEv2) support for the AutoReconnect... High Unreviewed

CVE-2021-1620 was published May 24, 2022

In 389-ds-base up to version 1.4.1.2, requests are handled by workers threads. Each sockets will... High Unreviewed

CVE-2019-3883 was published May 13, 2022

In the Linux kernel before 5.17.2, drivers/soc/qcom/qcom_aoss.c does not release an... Moderate Unreviewed

CVE-2023-22996 was published Feb 28, 2023

Memory leak in the v9fs_xattrcreate function in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows... Moderate Unreviewed

CVE-2016-9102 was published May 13, 2022

Memory leak in the ehci_process_itd function in hw/usb/hcd-ehci.c in QEMU (aka Quick Emulator)... Moderate Unreviewed

CVE-2016-7995 was published May 13, 2022

Memory leak in the v9fs_write function in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local... Moderate Unreviewed

CVE-2016-9106 was published May 13, 2022

Memory leak in the v9fs_read function in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local... Moderate Unreviewed

CVE-2016-8577 was published May 13, 2022

Memory leak in the v9fs_link function in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local... Moderate Unreviewed

CVE-2016-9105 was published May 13, 2022

The bio_map_user_iov and bio_unmap_user functions in block/bio.c in the Linux kernel before 4.13... Moderate Unreviewed

CVE-2017-12190 was published May 13, 2022

The nested_vmx_check_vmptr function in arch/x86/kvm/vmx.c in the Linux kernel through 4.9.8... Moderate Unreviewed

CVE-2017-2596 was published May 13, 2022

Quick Emulator (Qemu) built with the USB redirector usb-guest support is vulnerable to a memory... Moderate Unreviewed

CVE-2016-9907 was published May 13, 2022

Previous 1 2 3 4 5 … 17 18 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

429 advisories