GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
46 advisories
Filter by severity
PyOpenSSL Use-After-Free vulnerability
High
CVE-2018-1000807
was published
for
pyopenssl
(pip)
Oct 10, 2018
Use after free in CefSharp
High
CVE-2020-16017
was published
for
CefSharp.Common
(NuGet)
Nov 27, 2020
Reflected Cross-site Scripting in ACS Commons
High
CVE-2021-21028
was published
for
com.adobe.acs:acs-aem-commons
(Maven)
Feb 2, 2021
GPGME Go wrapper contains Use After Free
High
CVE-2020-8945
was published
for
github.com/proglottis/gpgme
(Go)
May 18, 2021
Use after free in boosted trees creation
High
CVE-2021-37652
was published
for
tensorflow
(pip)
Aug 25, 2021
Use after free in string-interner
High
CVE-2019-16882
was published
for
string-interner
(Rust)
Aug 25, 2021
Use after free in generic-array
High
CVE-2020-36465
was published
for
generic-array
(Rust)
Aug 25, 2021
Use after free in libpulse-binding
High
GHSA-ghpq-vjxw-ch5w
was published
for
libpulse-binding
(Rust)
Aug 25, 2021
Use after free / memory leak in `CollectiveReduceV2`
High
CVE-2021-41220
was published
for
tensorflow
(pip)
Nov 10, 2021
Use After Free in tremor-script
High
CVE-2021-45702
was published
for
tremor-script
(Rust)
Jan 6, 2022
Use After Free in libpulse-binding
High
CVE-2018-25028
was published
for
libpulse-binding
(Rust)
Jan 6, 2022
Use After Free in libpulse-binding
High
CVE-2018-25027
was published
for
libpulse-binding
(Rust)
Jan 6, 2022
Use after free in `DecodePng` kernel
High
CVE-2022-23584
was published
for
tensorflow
(pip)
Feb 9, 2022
ProTip!
Advisories are also available from the
GraphQL API