GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
10,892 advisories
Filter by severity
A network service is running on a nonstandard port.
Low
Unreviewed
CVE-1999-0586
was published
Apr 30, 2022
A Windows NT administrator account has the default name of Administrator.
Low
Unreviewed
CVE-1999-0585
was published
Apr 30, 2022
IP traceroute is allowed from arbitrary hosts.
Low
Unreviewed
CVE-1999-0525
was published
Apr 30, 2022
ICMP echo (ping) is allowed from arbitrary hosts.
Low
Unreviewed
CVE-1999-0523
was published
Apr 30, 2022
ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts.
Low
Unreviewed
CVE-1999-0524
was published
Apr 30, 2022
Remote attackers can cause a system crash through ipintr() in ipq in OpenBSD.
Low
Unreviewed
CVE-1999-0485
was published
Apr 30, 2022
A race condition in how procmail handles .procmailrc files allows a local user to read arbitrary...
Low
Unreviewed
CVE-1999-0475
was published
Apr 30, 2022
The rsync command before rsync 2.3.1 may inadvertently change the permissions of the client's...
Low
Unreviewed
CVE-1999-0473
was published
Apr 30, 2022
The DHTML Edit ActiveX control in Internet Explorer allows remote attackers to read arbitrary files.
Low
Unreviewed
CVE-1999-0487
was published
Apr 30, 2022
OpenBSD crash using nlink value in FFS and EXT2FS filesystems.
Low
Unreviewed
CVE-1999-0483
was published
Apr 30, 2022
Local attackers can conduct a denial of service in Midnight Commander 4.x with a symlink attack.
Low
Unreviewed
CVE-1999-0480
was published
Apr 30, 2022
Denial of service in Linux 2.0.36 allows local users to prevent any server from listening on any...
Low
Unreviewed
CVE-1999-0451
was published
Apr 30, 2022
Local users can perform a denial of service in Tripwire 1.2 and earlier using long filenames.
Low
Unreviewed
CVE-1999-0464
was published
Apr 30, 2022
L0phtcrack 2.5 used temporary files in the system TEMP directory which could contain password...
Low
Unreviewed
CVE-1999-0458
was published
Apr 30, 2022
Internet Explorer 5.0 allows a remote server to read arbitrary files on the client's file system...
Low
Unreviewed
CVE-1999-0468
was published
Apr 30, 2022
Buffer overflow in Linux autofs module through long directory names allows local users to perform...
Low
Unreviewed
CVE-1999-0460
was published
Apr 30, 2022
Local users can perform a denial of service in NetBSD 1.3.3 and earlier versions by creating an...
Low
Unreviewed
CVE-1999-0446
was published
Apr 30, 2022
Solaris ff.core allows local users to modify files.
Low
Unreviewed
CVE-1999-0442
was published
Apr 30, 2022
talkback in Netscape 4.5 allows a local user to overwrite arbitrary files of another user whose...
Low
Unreviewed
CVE-1999-0424
was published
Apr 30, 2022
64 bit Solaris 7 procfs allows local users to perform a denial of service.
Low
Unreviewed
CVE-1999-0417
was published
Apr 30, 2022
A race condition between the select() and accept() calls in NetBSD TCP servers allows remote...
Low
Unreviewed
CVE-1999-0396
was published
Apr 30, 2022
A race condition in Linux 2.2.1 allows local users to read arbitrary memory from /proc files.
Low
Unreviewed
CVE-1999-0401
was published
Apr 30, 2022
ProTip!
Advisories are also available from the
GraphQL API