Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,201 advisories

Loading
An elevation of privilege vulnerability in codecs/aacenc/SoftAACEncoder2.cpp in libstagefright in... High Unreviewed
CVE-2017-0594 was published May 13, 2022
An elevation of privilege vulnerability in the Qualcomm crypto engine driver could enable a local... High Unreviewed
CVE-2017-0520 was published May 13, 2022
An elevation of privilege vulnerability in NFC could enable a proximate attacker to execute... High Unreviewed
CVE-2017-0481 was published May 13, 2022
An elevation of privilege vulnerability in the Qualcomm ADSPRPC driver could enable a local... High Unreviewed
CVE-2017-0465 was published May 13, 2022
An elevation of privilege vulnerability in the Qualcomm Wi-Fi driver could enable a local... High Unreviewed
CVE-2017-0440 was published May 13, 2022
An elevation of privilege vulnerability in the Qualcomm Wi-Fi driver could enable a local... High Unreviewed
CVE-2017-0441 was published May 13, 2022
An elevation of privilege vulnerability in the Qualcomm Wi-Fi driver could enable a local... High Unreviewed
CVE-2017-0437 was published May 13, 2022
An elevation of privilege vulnerability in the Qualcomm Wi-Fi driver could enable a local... High Unreviewed
CVE-2017-0438 was published May 13, 2022
An elevation of privilege vulnerability in the Qualcomm Wi-Fi driver could enable a local... High Unreviewed
CVE-2017-0439 was published May 13, 2022
An elevation of privilege vulnerability in the Qualcomm Wi-Fi driver could enable a local... High Unreviewed
CVE-2017-0442 was published May 13, 2022
An elevation of privilege vulnerability in the NVIDIA crypto driver could enable a local... High Unreviewed
CVE-2017-0327 was published May 13, 2022
Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1,... High Unreviewed
CVE-2017-0296 was published May 13, 2022
An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious... High Unreviewed
CVE-2017-0306 was published May 13, 2022
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 is... High Unreviewed
CVE-2019-4015 was published May 13, 2022
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 is... High Unreviewed
CVE-2019-4014 was published May 13, 2022
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 is... High Unreviewed
CVE-2019-4016 was published May 13, 2022
A buffer overflow in Smart Card authentication code in gpkcsp.dll in Microsoft Windows XP through... High Unreviewed
CVE-2017-0176 was published May 13, 2022
Buffer overflow in Skia, as used in Google Chrome before 17.0.963.65, allows remote attackers to... High Unreviewed
CVE-2011-3033 was published May 13, 2022
Buffer overflow in the locale implementation in Google Chrome before 17.0.963.46 allows remote... High Unreviewed
CVE-2011-3959 was published May 13, 2022
Buffer overflow in Google Chrome before 15.0.874.120 allows remote attackers to cause a denial of... High Unreviewed
CVE-2011-3896 was published May 13, 2022
Buffer overflow in Google Chrome before 16.0.912.63 allows remote attackers to cause a denial of... High Unreviewed
CVE-2011-3915 was published May 13, 2022
Google Chrome before 10.0.648.204 does not properly handle base strings, which allows remote... High Unreviewed
CVE-2011-1291 was published May 13, 2022
Buffer overflow in the password management functionality in NTP 4.2.x before 4.2.8p4, and 4.3.x... High Unreviewed
CVE-2015-7854 was published May 13, 2022
Buffer overflow in Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 allows... High Unreviewed
CVE-2011-0481 was published May 13, 2022
Multiple buffer overflows in vorbis_dec.c in the Vorbis decoder in FFmpeg, as used in Google... High Unreviewed
CVE-2011-0480 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database