Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,412
Erlang
28
GitHub Actions
16
Go
1,650
Maven
4,914
npm
3,437
NuGet
594
pip
2,682
Pub
10
RubyGems
822
Rust
760
Swift
34
Unreviewed advisories
All unreviewed
5,000+

10 advisories

The ASN.1 implementation in OpenSSL before 1.0.1o and 1.0.2 before 1.0.2c allows remote attackers... Critical Unreviewed
CVE-2016-2108 was published May 14, 2022
The asn1_d2i_read_bio function in crypto/asn1/a_d2i_fp.c in the ASN.1 BIO implementation in... High Unreviewed
CVE-2016-2109 was published May 14, 2022
Integer overflow in the EVP_EncryptUpdate function in crypto/evp/evp_enc.c in OpenSSL before 1.0... High Unreviewed
CVE-2016-2106 was published May 14, 2022
xymond in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 allow remote authenticated users to execute... High Unreviewed
CVE-2016-2056 was published May 14, 2022
Integer overflow in the EVP_EncodeUpdate function in crypto/evp/encode.c in OpenSSL before 1.0.1t... High Unreviewed
CVE-2016-2105 was published May 14, 2022
Stack-based buffer overflow in native/mod_manager/node.c in mod_cluster 1.2.9. High Unreviewed
CVE-2016-4459 was published May 14, 2022
mod_cluster, as used in Red Hat JBoss Web Server 2.1, allows remote attackers to cause a denial... High Unreviewed
CVE-2016-3110 was published May 14, 2022
The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zh, 1.0.0... Moderate Unreviewed
CVE-2015-3195 was published May 13, 2022
The chunked transfer coding implementation in the Apache HTTP Server before 2.4.14 does not... Moderate Unreviewed
CVE-2015-3183 was published May 13, 2022
The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on... Moderate Unreviewed
CVE-2015-4000 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API