GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 18,303
Composer 3,413
Erlang 28
GitHub Actions 16
Go 1,653
Maven 4,915
npm 3,442
NuGet 594
pip 2,828
Pub 10
RubyGems 823
Rust 763
Swift 34

Unreviewed advisories

All unreviewed 214,735

CC-BY-4.0 License

Language support

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

4 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability in the Stream Control Transmission Protocol (SCTP) decoder of the Cisco NetFlow... High Unreviewed

CVE-2017-3826 was published May 13, 2022

If named is configured to use Response Policy Zones (RPZ) an error processing some rule types can... Moderate Unreviewed

CVE-2017-3140 was published May 13, 2022

The FoFiType1C::cvtGlyph function in fofi/FoFiType1C.cc in Poppler through 0.64.0 allows remote... Moderate Unreviewed

CVE-2017-18267 was published May 13, 2022

Deserialization of Untrusted Data in jackson-databind Critical

CVE-2018-11307 was published for com.fasterxml.jackson.core:jackson-databind (Maven) Jul 16, 2019

ProTip! Advisories are also available from the GraphQL API

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

4 advisories