Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,299
Erlang
31
GitHub Actions
21
Go
2,064
Maven
5,000+
npm
3,744
NuGet
668
pip
3,424
Pub
12
RubyGems
892
Rust
877
Swift
36
Unreviewed advisories
All unreviewed
5,000+

532 advisories

Loading
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the... Critical Unreviewed
CVE-2017-14918 was published May 17, 2022
An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017... Critical Unreviewed
CVE-2017-16398 was published May 17, 2022
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the... Critical Unreviewed
CVE-2017-11005 was published May 17, 2022
Use after free vulnerability in Adobe Flash Player Desktop Runtime before 20.0.0.267, Adobe Flash... Critical Unreviewed
CVE-2016-0959 was published May 14, 2022
ext/session/session.c in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9 does not... Critical Unreviewed
CVE-2016-6290 was published May 14, 2022
Use-after-free vulnerability in Ghostscript 9.20 might allow remote attackers to execute... Critical Unreviewed
CVE-2016-7978 was published May 14, 2022
Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable use after free... Critical Unreviewed
CVE-2017-3084 was published May 14, 2022
Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable use after free... Critical Unreviewed
CVE-2017-3083 was published May 14, 2022
Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable use after free... Critical Unreviewed
CVE-2017-3075 was published May 14, 2022
Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable use after free... Critical Unreviewed
CVE-2017-3081 was published May 14, 2022
php_zip.c in the zip extension in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8... Critical Unreviewed
CVE-2016-5773 was published May 14, 2022
ext/snmp/snmp.c in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9 improperly... Critical Unreviewed
CVE-2016-6295 was published May 14, 2022
Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable use after free... Critical Unreviewed
CVE-2017-3063 was published May 14, 2022
Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable use after free... Critical Unreviewed
CVE-2017-3062 was published May 14, 2022
Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable use after free... Critical Unreviewed
CVE-2017-3059 was published May 14, 2022
A vulnerability was found in Exim and classified as problematic. This issue affects the function... Critical Unreviewed
CVE-2022-3620 was published Oct 21, 2022
The version of podman as released for Red Hat Enterprise Linux 7 Extras via RHSA-2022:2190... Critical Unreviewed
CVE-2022-2738 was published Sep 2, 2022
In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p7, 10.4-STABLE, 10.4-RELEASE-p7, and 10.3-RELEASE... Critical Unreviewed
CVE-2018-6916 was published May 14, 2022
A use-after-free issue was discovered in libwebm through 2018-02-02. If a Vp9HeaderParser was... Critical Unreviewed
CVE-2018-6548 was published May 14, 2022
A remote, unauthenticated attacker may be able to execute code by exploiting a use-after-free... Critical Unreviewed
CVE-2018-0001 was published May 14, 2022
In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from... Critical Unreviewed
CVE-2018-3599 was published May 14, 2022
A use-after-free vulnerability was found in systemd. This issue occurs due to the on_stream_io()... Critical Unreviewed
CVE-2022-2526 was published Sep 10, 2022
In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Automobile, Snapdragon... Critical Unreviewed
CVE-2017-18136 was published May 14, 2022
In all Qualcomm products with Android releases from CAF using the Linux kernel, a use-after-free... Critical Unreviewed
CVE-2016-10385 was published May 14, 2022
In all versions of PHP 7, during the unserialization process, resizing the 'properties' hash... Critical Unreviewed
CVE-2016-7479 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database