Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,247
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

110 advisories

Loading
An issue in coap_msg.c in Keith Cullen's FreeCoAP v.0.7 allows remote attackers to cause a Denial... Critical Unreviewed
CVE-2024-31030 was published May 31, 2024
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Properly link new... Critical Unreviewed
CVE-2024-35960 was published May 20, 2024
In the Linux kernel, the following vulnerability has been resolved: wifi: wilc1000: fix RCU... Critical Unreviewed
CVE-2024-27053 was published May 1, 2024
Joda Time v2.12.5 was discovered to contain a NullPointerException via the component org.joda... Critical Unreviewed
CVE-2024-23080 was published Apr 10, 2024
JGraphT Core v1.5.2 was discovered to contain a NullPointerException via the component org... Critical Unreviewed
CVE-2024-23078 was published Apr 8, 2024
An issue was discovered in gpac version 2.3-DEV-rev588-g7edc40fee-master, allows remote attackers... Critical Unreviewed
CVE-2023-46427 was published Mar 9, 2024
An issue in RedisGraph v.2.12.10 allows an attacker to execute arbitrary code and cause a denial... Critical Unreviewed
CVE-2023-47003 was published Nov 16, 2023
The hardware emulation in the of_dpa_cmd_add_l2_flood of rocker device model in QEMU, as used in... Critical Unreviewed
CVE-2022-36648 was published Aug 22, 2023
An issue was found in MojoJson v1.2.3 allows attackers to execute arbitary code via the destroy... Critical Unreviewed
CVE-2023-23087 was published Feb 3, 2023
ecnepsnai/web vulnerable to Uncontrolled Resource Consumption Critical
CVE-2021-4236 was published for github.com/ecnepsnai/web (Go) Dec 28, 2022
In libarchive 3.6.1, the software does not check for an error after calling calloc function that... Critical Unreviewed
CVE-2022-36227 was published Nov 22, 2022
Null Pointer Dereference may occur due to improper validation while processing crafted SDP body... Critical Unreviewed
CVE-2021-1946 was published May 24, 2022
NULL Pointer Dereference in the "isomedia/track.c" module's "MergeTrack()" function of GPAC v0.5... Critical Unreviewed
CVE-2021-28300 was published May 24, 2022
u'Null-pointer dereference can occur while accessing data buffer beyond its size that leads to... Critical Unreviewed
CVE-2020-11168 was published May 24, 2022
A null pointer dereference was addressed with improved input validation. This issue is fixed in... Critical Unreviewed
CVE-2019-8572 was published May 24, 2022
Adobe Acrobat and Reader versions , 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2017... Critical Unreviewed
CVE-2019-8205 was published May 24, 2022
Symonics libmysofa 0.7 has a NULL pointer dereference in getHrtf in hrtf/reader.c. Critical Unreviewed
CVE-2019-16092 was published May 24, 2022
Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017... Critical Unreviewed
CVE-2019-8045 was published May 24, 2022
Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017... Critical Unreviewed
CVE-2019-8017 was published May 24, 2022
Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017... Critical Unreviewed
CVE-2019-8006 was published May 24, 2022
In WebAccess/SCADA Versions 8.3.5 and prior, multiple untrusted pointer dereference... Critical Unreviewed
CVE-2019-10993 was published May 24, 2022
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017... Critical Unreviewed
CVE-2019-7076 was published May 24, 2022
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017... Critical Unreviewed
CVE-2019-7066 was published May 24, 2022
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017... Critical Unreviewed
CVE-2019-7054 was published May 24, 2022
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017... Critical Unreviewed
CVE-2019-7051 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API