Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,439
Erlang
29
GitHub Actions
16
Go
1,664
Maven
4,922
npm
3,451
NuGet
594
pip
2,853
Pub
10
RubyGems
823
Rust
764
Swift
34
Unreviewed advisories
All unreviewed
5,000+

15 advisories

Google Chrome before 37.0.2062.60 and 38.x before 38.0.2125.59 on iOS does not properly restrict... Moderate Unreviewed
CVE-2014-3187 was published May 17, 2022
Jenkins does not invalidate the API token when a user is deleted Moderate
CVE-2014-2062 was published for org.jenkins-ci.main:jenkins-core (Maven) May 17, 2022
sunSUNQ
Mozilla Network Security Services (NSS) before 3.16.2.1, 3.16.x before 3.16.5, and 3.17.x before... High Unreviewed
CVE-2014-1568 was published May 17, 2022
extensions/common/url_pattern.cc in Google Chrome before 37.0.2062.94 does not prevent use of a '... Moderate Unreviewed
CVE-2014-3170 was published May 17, 2022
modules/webaudio/BiquadDSPKernel.cpp in the Web Audio API implementation in Blink, as used in... Moderate Unreviewed
CVE-2014-3174 was published May 17, 2022
The Debugger extension API in browser/extensions/api/debugger/debugger_api.cc in Google Chrome... Moderate Unreviewed
CVE-2014-3172 was published May 17, 2022
Use-after-free vulnerability in the V8 bindings in Blink, as used in Google Chrome before 37.0... High Unreviewed
CVE-2014-3171 was published May 17, 2022
Google Chrome before 37.0.2062.94 does not properly handle the interaction of extensions, IPC,... High Unreviewed
CVE-2014-3177 was published May 17, 2022
Google Chrome before 37.0.2062.94 does not properly handle the interaction of extensions, IPC,... High Unreviewed
CVE-2014-3176 was published May 17, 2022
Multiple unspecified vulnerabilities in Google Chrome before 37.0.2062.120 allow attackers to... High Unreviewed
CVE-2014-3179 was published May 17, 2022
The WebGL implementation in Google Chrome before 37.0.2062.94 does not ensure that clear calls... Moderate Unreviewed
CVE-2014-3173 was published May 17, 2022
Multiple unspecified vulnerabilities in Google Chrome before 37.0.2062.94 allow attackers to... High Unreviewed
CVE-2014-3175 was published May 17, 2022
Use-after-free vulnerability in core/dom/Node.cpp in Blink, as used in Google Chrome before 37.0... High Unreviewed
CVE-2014-3178 was published May 17, 2022
Use-after-free vulnerability in the SVG implementation in Blink, as used in Google Chrome before... High Unreviewed
CVE-2014-3168 was published May 14, 2022
Use-after-free vulnerability in core/dom/ContainerNode.cpp in the DOM implementation in Blink, as... High Unreviewed
CVE-2014-3169 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API