GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,439
Erlang
29
GitHub Actions
16
Go
1,664
Maven
4,922
npm
3,451
NuGet
594
pip
2,853
Pub
10
RubyGems
823
Rust
764
Swift
34
Unreviewed advisories
All unreviewed
5,000+
15 advisories
Filter by severity
Google Chrome before 37.0.2062.60 and 38.x before 38.0.2125.59 on iOS does not properly restrict...
Moderate
Unreviewed
CVE-2014-3187
was published
May 17, 2022
Jenkins does not invalidate the API token when a user is deleted
Moderate
CVE-2014-2062
was published
for
org.jenkins-ci.main:jenkins-core
(Maven)
May 17, 2022
Mozilla Network Security Services (NSS) before 3.16.2.1, 3.16.x before 3.16.5, and 3.17.x before...
High
Unreviewed
CVE-2014-1568
was published
May 17, 2022
extensions/common/url_pattern.cc in Google Chrome before 37.0.2062.94 does not prevent use of a '...
Moderate
Unreviewed
CVE-2014-3170
was published
May 17, 2022
modules/webaudio/BiquadDSPKernel.cpp in the Web Audio API implementation in Blink, as used in...
Moderate
Unreviewed
CVE-2014-3174
was published
May 17, 2022
The Debugger extension API in browser/extensions/api/debugger/debugger_api.cc in Google Chrome...
Moderate
Unreviewed
CVE-2014-3172
was published
May 17, 2022
Use-after-free vulnerability in the V8 bindings in Blink, as used in Google Chrome before 37.0...
High
Unreviewed
CVE-2014-3171
was published
May 17, 2022
Google Chrome before 37.0.2062.94 does not properly handle the interaction of extensions, IPC,...
High
Unreviewed
CVE-2014-3177
was published
May 17, 2022
Google Chrome before 37.0.2062.94 does not properly handle the interaction of extensions, IPC,...
High
Unreviewed
CVE-2014-3176
was published
May 17, 2022
Multiple unspecified vulnerabilities in Google Chrome before 37.0.2062.120 allow attackers to...
High
Unreviewed
CVE-2014-3179
was published
May 17, 2022
The WebGL implementation in Google Chrome before 37.0.2062.94 does not ensure that clear calls...
Moderate
Unreviewed
CVE-2014-3173
was published
May 17, 2022
Multiple unspecified vulnerabilities in Google Chrome before 37.0.2062.94 allow attackers to...
High
Unreviewed
CVE-2014-3175
was published
May 17, 2022
Use-after-free vulnerability in core/dom/Node.cpp in Blink, as used in Google Chrome before 37.0...
High
Unreviewed
CVE-2014-3178
was published
May 17, 2022
Use-after-free vulnerability in the SVG implementation in Blink, as used in Google Chrome before...
High
Unreviewed
CVE-2014-3168
was published
May 14, 2022
Use-after-free vulnerability in core/dom/ContainerNode.cpp in the DOM implementation in Blink, as...
High
Unreviewed
CVE-2014-3169
was published
May 14, 2022
ProTip!
Advisories are also available from the
GraphQL API