GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,426
Erlang
29
GitHub Actions
16
Go
1,653
Maven
4,915
npm
3,442
NuGet
594
pip
2,832
Pub
10
RubyGems
823
Rust
763
Swift
34
Unreviewed advisories
All unreviewed
5,000+
23 advisories
Filter by severity
Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable memory corruption...
Critical
Unreviewed
CVE-2017-2999
was published
May 14, 2022
The Type_MLU_Read function in cmstypes.c in Little CMS (aka lcms2) allows remote attackers to...
High
Unreviewed
CVE-2016-10165
was published
May 14, 2022
The ecryptfs_privileged_open function in fs/ecryptfs/kthread.c in the Linux kernel before 4.6.3...
High
Unreviewed
CVE-2016-1583
was published
May 14, 2022
inftrees.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by...
High
Unreviewed
CVE-2016-9840
was published
May 13, 2022
The inflateMark function in inflate.c in zlib 1.2.8 might allow context-dependent attackers to...
High
Unreviewed
CVE-2016-9842
was published
May 13, 2022
inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by...
Critical
Unreviewed
CVE-2016-9841
was published
May 13, 2022
The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have...
Critical
Unreviewed
CVE-2016-9843
was published
May 13, 2022
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported...
High
Unreviewed
CVE-2017-10309
was published
May 13, 2022
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent:...
High
Unreviewed
CVE-2017-10388
was published
May 13, 2022
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent...
Moderate
Unreviewed
CVE-2017-10355
was published
May 13, 2022
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent:...
Moderate
Unreviewed
CVE-2017-10357
was published
May 13, 2022
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent...
Moderate
Unreviewed
CVE-2017-10356
was published
May 13, 2022
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent:...
Moderate
Unreviewed
CVE-2017-10348
was published
May 13, 2022
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JAXP)....
Moderate
Unreviewed
CVE-2017-10349
was published
May 13, 2022
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent...
Low
Unreviewed
CVE-2017-10345
was published
May 13, 2022
Vulnerability in the Java SE, JRockit component of Oracle Java SE (subcomponent: Serialization)....
Moderate
Unreviewed
CVE-2017-10347
was published
May 13, 2022
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JAX-WS)...
Moderate
Unreviewed
CVE-2017-10350
was published
May 13, 2022
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot...
Critical
Unreviewed
CVE-2017-10346
was published
May 13, 2022
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent...
Moderate
Unreviewed
CVE-2017-10295
was published
May 13, 2022
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent...
Moderate
Unreviewed
CVE-2017-10281
was published
May 13, 2022
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Smart Card IO). Supported...
Moderate
Unreviewed
CVE-2017-10274
was published
May 13, 2022
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: RMI)....
Critical
Unreviewed
CVE-2017-10285
was published
May 13, 2022
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Javadoc). Supported...
Moderate
Unreviewed
CVE-2017-10293
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API