GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 18,360
Composer 3,434
Erlang 29
GitHub Actions 16
Go 1,660
Maven 4,922
npm 3,450
NuGet 594
pip 2,840
Pub 10
RubyGems 823
Rust 764
Swift 34

Unreviewed advisories

All unreviewed 215,749

CC-BY-4.0 License

Language support

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

6 advisories

Filter by severity

Sort by

Least recently updated

Xen 3.3 through 4.1, when XSM is enabled, allows local users to cause a denial of service via... Moderate Unreviewed

CVE-2014-1892 was published May 17, 2022

Multiple integer overflows in the (1) FLASK_GETBOOL, (2) FLASK_SETBOOL, (3) FLASK_USER, and (4)... Moderate Unreviewed

CVE-2014-1891 was published May 17, 2022

Multiple integer overflows in unspecified suboperations in the flask hypercall in Xen 3.2.x and... Moderate Unreviewed

CVE-2014-1894 was published May 17, 2022

Multiple integer overflows in the (1) FLASK_GETBOOL and (2) FLASK_SETBOOL suboperations in the... Moderate Unreviewed

CVE-2014-1893 was published May 17, 2022

Improper certificate validation in org.apache.httpcomponents:httpclient High

CVE-2012-6153 was published for org.apache.httpcomponents:httpclient (Maven) Oct 17, 2018

Improper Verification of Cryptographic Signature in org.apache.httpcomponents:httpclient Moderate

CVE-2014-3577 was published for org.apache.httpcomponents:httpclient (Maven) Oct 17, 2018

ProTip! Advisories are also available from the GraphQL API

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

6 advisories