GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,972
Erlang
29
GitHub Actions
16
Go
1,762
Maven
4,983
npm
3,518
NuGet
609
pip
3,094
Pub
10
RubyGems
833
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
9,017 advisories
Filter by severity
An issue was discovered in SoftMaker Office 2024 / NX before revision 1214 and SoftMaker...
Unknown
Unreviewed
CVE-2023-7270
was published
Jun 27, 2024
Actual Analyzer through 2014-08-29 allows code execution via shell metacharacters because...
Critical
Unreviewed
CVE-2014-5470
was published
Jun 22, 2024
In the Linux kernel, the following vulnerability has been resolved:
af_unix: Update unix_sk(sk)-...
Unknown
Unreviewed
CVE-2024-36972
was published
Jun 10, 2024
In the Linux kernel, the following vulnerability has been resolved:
isdn: mISDN: netjet: Fix...
Moderate
Unreviewed
CVE-2021-47284
was published
May 21, 2024
Certain software builds for the TCL 30Z and TCL 10 Android devices contain a vulnerable, pre...
High
Unreviewed
CVE-2023-38295
was published
Apr 22, 2024
The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle...
High
Unreviewed
CVE-2014-0160
was published
May 13, 2022
The futex_requeue function in kernel/futex.c in the Linux kernel through 3.14.5 does not ensure...
High
Unreviewed
CVE-2014-3153
was published
May 13, 2022
win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2,...
High
Unreviewed
CVE-2014-4113
was published
May 14, 2022
Use-after-free vulnerability in Microsoft Internet Explorer 9 and 10 allows remote attackers to...
High
Unreviewed
CVE-2014-0322
was published
May 14, 2022
Directory traversal vulnerability in NTWebServer in InduSoft Web Studio 7.1 before SP2 Patch 4...
High
Unreviewed
CVE-2014-0780
was published
May 17, 2022
Web services managed by Edito CMS (Content Management System) in versions from 3.5 through 3.25...
High
Unreviewed
CVE-2024-4836
was published
Jul 2, 2024
Microsoft Internet Explorer 7 through 11 allows remote attackers to gain privileges via a crafted...
Moderate
Unreviewed
CVE-2014-4123
was published
May 14, 2022
Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows...
High
Unreviewed
CVE-2014-4077
was published
May 14, 2022
Adobe Reader and Acrobat 10.x before 10.1.11 and 11.x before 11.0.08 on Windows allow attackers...
High
Unreviewed
CVE-2014-0546
was published
May 17, 2022
Microsoft Internet Explorer 6 through 11 allows remote attackers to gain privileges via a crafted...
Moderate
Unreviewed
CVE-2014-2817
was published
May 14, 2022
win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2,...
High
Unreviewed
CVE-2014-4148
was published
May 14, 2022
The miniigd SOAP service in Realtek SDK allows remote attackers to execute arbitrary code via a...
High
Unreviewed
CVE-2014-8361
was published
May 13, 2022
In the Linux kernel, the following vulnerability has been resolved:
jffs2: prevent xattr node...
Unknown
Unreviewed
CVE-2024-38599
was published
Jun 19, 2024
In the Linux kernel, the following vulnerability has been resolved:
ring-buffer: Fix a race...
Unknown
Unreviewed
CVE-2024-38601
was published
Jun 19, 2024
In the Linux kernel, the following vulnerability has been resolved:
virtio: delete vq in...
Unknown
Unreviewed
CVE-2024-37353
was published
Jun 21, 2024
In the Linux kernel, the following vulnerability has been resolved:
gtp: fix use-after-free and...
Unknown
Unreviewed
CVE-2024-26754
was published
Apr 3, 2024
In the Linux kernel, the following vulnerability has been resolved:
llc: call sock_orphan() at...
Unknown
Unreviewed
CVE-2024-26625
was published
Mar 6, 2024
In the Linux kernel, the following vulnerability has been resolved:
netlink: Fix kernel-infoleak...
Unknown
Unreviewed
CVE-2024-26805
was published
Apr 4, 2024
In the Linux kernel, the following vulnerability has been resolved:
ipvlan: Dont Use skb->sk in...
Unknown
Unreviewed
CVE-2024-33621
was published
Jun 21, 2024
In the Linux kernel, the following vulnerability has been resolved:
ecryptfs: Fix buffer size...
Unknown
Unreviewed
CVE-2024-38578
was published
Jun 19, 2024
ProTip!
Advisories are also available from the
GraphQL API