GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,972
Erlang
29
GitHub Actions
16
Go
1,762
Maven
4,983
npm
3,518
NuGet
609
pip
3,094
Pub
10
RubyGems
833
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
93,966 advisories
Filter by severity
The HTTPS NIO Connector allows remote attackers to cause a denial of service (thread consumption)...
High
Unreviewed
CVE-2016-2094
was published
May 17, 2022
The Qualcomm TrustZone component in Android before 2016-05-01 on Nexus 6 and Android One devices...
High
Unreviewed
CVE-2016-2432
was published
May 17, 2022
Cross-site request forgery (CSRF) vulnerability in the Menubook plugin before 0.9.3 for baserCMS...
High
Unreviewed
CVE-2016-1174
was published
May 17, 2022
The Traffic Management Microkernel (TMM) in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, GTM,...
High
Unreviewed
CVE-2015-8240
was published
May 17, 2022
The _prepopulate_request_walk function in the Prepopulate module 7.x-2.x before 7.x-2.1 for...
High
Unreviewed
CVE-2016-3188
was published
May 17, 2022
The Policy Admin Tool in Apache Ranger before 0.5.0 allows remote authenticated users to bypass...
High
Unreviewed
CVE-2015-0266
was published
May 17, 2022
The decode_search function in dhcp.c in dhcpcd 3.x allows remote DHCP servers to cause a denial...
High
Unreviewed
CVE-2012-6699
was published
May 17, 2022
The Accellion File Transfer Appliance (FTA) before FTA_9_12_40 allows remote authenticated users...
High
Unreviewed
CVE-2016-2352
was published
May 17, 2022
Multiple stack-based buffer underflows in decoder/ih264d_parse_cavlc.c in mediaserver in Android...
High
Unreviewed
CVE-2016-0840
was published
May 17, 2022
The (1) SSH_MSG_NEWKEYS and (2) SSH_MSG_KEXDH_REPLY packet handlers in package_cb.c in libssh...
High
Unreviewed
CVE-2015-3146
was published
May 17, 2022
Avast allows remote attackers to cause a denial of service (memory corruption) and possibly...
High
Unreviewed
CVE-2016-3986
was published
May 17, 2022
Stack-based buffer overflow in decoder/impeg2d_vld.c in mediaserver in Android 6.x before 2016-04...
High
Unreviewed
CVE-2016-0836
was published
May 17, 2022
The decode_search function in dhcp.c in dhcpcd 3.x does not properly free allocated memory, which...
High
Unreviewed
CVE-2012-6700
was published
May 17, 2022
Wi-Fi in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04...
High
Unreviewed
CVE-2016-2422
was published
May 17, 2022
Heap-based buffer overflow in the HIFI driver in Huawei P8 smartphones with software GRA-TL00...
High
Unreviewed
CVE-2015-8319
was published
May 17, 2022
The PORCHE_PAIRING_CONFLICT feature in Bluetooth in Android 4.x before 4.4.4, 5.0.x before 5.0.2,...
High
Unreviewed
CVE-2016-0850
was published
May 17, 2022
include/core/SkPostConfig.h in Skia, as used in System_server in Android 4.x before 4.4.4, 5.0.x...
High
Unreviewed
CVE-2016-2412
was published
May 17, 2022
Open redirect vulnerability in the valid_back_url function in app/controllers...
High
Unreviewed
CVE-2015-8474
was published
May 17, 2022
The am_read_post_data function in mod_auth_mellon before 0.11.1 does not limit the amount of data...
High
Unreviewed
CVE-2016-2146
was published
May 17, 2022
The Graphics driver in Huawei P8 smartphones with software GRA-TL00 before GRA-TL00C01B230, GRA...
High
Unreviewed
CVE-2015-8307
was published
May 17, 2022
The HMI web server in Ecava IntegraXor before 5.0 build 4522 allows remote attackers to obtain...
High
Unreviewed
CVE-2016-2306
was published
May 17, 2022
SQL injection vulnerability in the Workflow Screen in dotCMS before 3.3.2 allows remote...
High
Unreviewed
CVE-2016-4040
was published
May 17, 2022
The ovisp driver in Huawei P8 smartphones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00...
High
Unreviewed
CVE-2015-8681
was published
May 17, 2022
The Graphics driver in Huawei P8 smartphones with software GRA-TL00 before GRA-TL00C01B230, GRA...
High
Unreviewed
CVE-2015-8680
was published
May 17, 2022
The Telecom Component in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04...
High
Unreviewed
CVE-2016-0847
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API