GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,262
Erlang
31
GitHub Actions
21
Go
2,030
Maven
5,000+
npm
3,732
NuGet
662
pip
3,409
Pub
12
RubyGems
891
Rust
865
Swift
36
Unreviewed advisories
All unreviewed
5,000+
46 advisories
Filter by severity
Microsoft Security Advisory CVE-2024-38229 | .NET Remote Code Execution Vulnerability
High
CVE-2024-38229
was published
for
Microsoft.AspNetCore.App.Runtime.linux-arm
(NuGet)
Oct 8, 2024
.NET Elevation of Privilege Vulnerability
High
CVE-2024-21409
was published
for
Microsoft.WindowsDesktop.App.Runtime.win-arm64
(NuGet)
Apr 17, 2024
cassandra-rs's non-idiomatic use of iterators leads to use after free
High
CVE-2024-27284
was published
for
cassandra-cpp
(Rust)
Apr 5, 2024
Use After Free in SixLabors.ImageSharp
High
CVE-2024-27929
was published
for
SixLabors.ImageSharp
(NuGet)
Mar 5, 2024
Mio's tokens for named pipes may be delivered after deregistration
High
CVE-2024-27308
was published
for
mio
(Rust)
Mar 4, 2024
Use after free in PaddlePaddle
High
CVE-2023-38669
was published
for
paddlepaddle
(pip)
Jul 26, 2023
.NET Remote Code Execution Vulnerability
High
CVE-2023-33128
was published
for
Microsoft.NetCore.App.Runtime.linux-arm
(NuGet)
Jun 14, 2023
Unpatched extfs vulnerabilities are exploitable through suid-mode Apptainer
High
CVE-2023-30549
was published
for
github.com/apptainer/apptainer
(Go)
Apr 25, 2023
.NET Remote Code Execution Vulnerability
High
CVE-2023-21808
was published
for
Microsoft.NetCore.App.Runtime.win-arm
(NuGet)
Feb 14, 2023
openssl-src vulnerable to Use-after-free following `BIO_new_NDEF`
High
CVE-2023-0215
was published
for
openssl-src
(Rust)
Feb 8, 2023
Nokogiri has vulnerable dependencies on libxml2 and libxslt
High
CVE-2021-30560
was published
for
nokogiri
(RubyGems)
May 24, 2022
Nokogiri Implements libxml2 version vulnerable to use-after-free
High
CVE-2021-3518
was published
for
nokogiri
(RubyGems)
May 24, 2022
futures_task::waker may cause a use-after-free if used on a type that isn't 'static
High
CVE-2020-35906
was published
for
futures-task
(Rust)
May 24, 2022
Nokogiri affected by libxslt Use of Uninitialized Resource/Use After Free vulnerability
High
CVE-2019-18197
was published
for
nokogiri
(RubyGems)
May 24, 2022
Nokogiri gem, via libxml, is affected by DoS vulnerabilities
High
CVE-2017-15412
was published
for
nokogiri
(RubyGems)
May 14, 2022
Use after free in Apache Mesos
High
CVE-2017-9790
was published
for
org.apache.mesos:mesos
(Maven)
May 13, 2022
Vulnerable dependencies in Nokogiri
High
GHSA-fq42-c5rg-92c2
was published
for
nokogiri
(RubyGems)
Feb 25, 2022
Use after free in Animation
High
CVE-2022-0609
was published
for
CefSharp.Common
(NuGet)
Feb 22, 2022
Use after free in `DecodePng` kernel
High
CVE-2022-23584
was published
for
tensorflow
(pip)
Feb 9, 2022
Use After Free in libpulse-binding
High
CVE-2018-25027
was published
for
libpulse-binding
(Rust)
Jan 6, 2022
Use After Free in libpulse-binding
High
CVE-2018-25028
was published
for
libpulse-binding
(Rust)
Jan 6, 2022
ProTip!
Advisories are also available from the
GraphQL API