Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,262
Erlang
31
GitHub Actions
21
Go
2,030
Maven
5,000+
npm
3,732
NuGet
662
pip
3,409
Pub
12
RubyGems
891
Rust
865
Swift
36
Unreviewed advisories
All unreviewed
5,000+

205 advisories

Loading
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2018-14282 was published May 13, 2022
An access of uninitialized pointer vulnerability in CX-Supervisor (Versions 3.42 and prior) could... High Unreviewed
CVE-2018-19018 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2018-9981 was published May 13, 2022
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. pop.c mishandles a... Critical Unreviewed
CVE-2018-14356 was published May 13, 2022
Google Chrome before 12.0.742.91 attempts to read data from an uninitialized pointer, which... Moderate Unreviewed
CVE-2011-1814 was published May 13, 2022
Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly interact with... High Unreviewed
CVE-2011-0479 was published May 13, 2022
A remote code execution vulnerability exists in the way that the Windows Graphics Device... High Unreviewed
CVE-2019-0853 was published May 13, 2022
HylaFAX 6.0.6 and HylaFAX+ 5.6.0 allow remote attackers to execute arbitrary code via a dial-in... Critical Unreviewed
CVE-2018-17141 was published May 13, 2022
Amazon Web Services (AWS) FreeRTOS through 1.3.1 has an uninitialized pointer free in... High Unreviewed
CVE-2018-16522 was published May 13, 2022
Subversion's mod_dav_svn Apache HTTPD module versions 1.11.0 and 1.10.0 to 1.10.3 will crash... High Unreviewed
CVE-2018-11803 was published May 13, 2022
Teluu PJSIP version 2.7.1 and earlier contains a Access of Null/Uninitialized Pointer... High Unreviewed
CVE-2018-1000099 was published May 13, 2022
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1... Moderate Unreviewed
CVE-2018-0894 was published May 13, 2022
In Omron CX-Supervisor Versions 3.30 and prior, access of uninitialized pointer vulnerabilities... Moderate Unreviewed
CVE-2018-7515 was published May 13, 2022
An exploitable use of an uninitialized pointer vulnerability exists in the JavaScript engine in... High Unreviewed
CVE-2018-3842 was published May 13, 2022
An exploitable uninitialized pointer vulnerability exists in the Office Open XML parser of... High Unreviewed
CVE-2018-4001 was published May 13, 2022
An exploitable uninitialized pointer vulnerability exists in the rich text format parser of... High Unreviewed
CVE-2018-4040 was published May 13, 2022
Acrobat Reader DC versions 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012... High Unreviewed
CVE-2022-27794 was published May 12, 2022
The init_copy function in kernel.c in mruby 1.4.1 makes initialize_copy calls for TT_ICLASS... Critical Unreviewed
CVE-2018-11743 was published May 7, 2022
The decompression implementation in the Imf::hufUncompress function in OpenEXR 1.2.2 and 1.6.1... Moderate Unreviewed
CVE-2009-1721 was published May 2, 2022
lib/pk-libgcrypt.c in libgnutls in GnuTLS before 2.6.6 does not properly handle invalid DSA... Moderate Unreviewed
CVE-2009-1415 was published May 2, 2022
The asn1_decode_generaltime function in lib/krb5/asn.1/asn1_decode.c in the ASN.1 GeneralizedTime... High Unreviewed
CVE-2009-0846 was published May 2, 2022
CoreText in Apple Mac OS X 10.4 through 10.4.10 allows attackers to cause a denial of service ... Moderate Unreviewed
CVE-2007-4682 was published May 1, 2022
EnterpriseDB Advanced Server 8.2 does not properly handle certain debugging function calls that... Moderate Unreviewed
CVE-2007-4639 was published May 1, 2022
The kadm5_modify_policy_internal function in lib/kadm5/srv/svr_policy.c in the Kerberos... High Unreviewed
CVE-2007-4000 was published May 1, 2022
The TrueType Fonts rasterizer in Microsoft Windows 2000 SP4 allows local users to gain privileges... High Unreviewed
CVE-2007-1213 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database