GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,681
NuGet
650
pip
3,298
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,604 advisories
Filter by severity
All versions of the NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode...
High
Unreviewed
CVE-2017-0341
was published
May 17, 2022
All versions of the NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode...
High
Unreviewed
CVE-2017-0348
was published
May 17, 2022
The read_gab2_sub function in libavformat/avidec.c in FFmpeg before 3.1.4 allows remote attackers...
Moderate
Unreviewed
CVE-2016-7905
was published
May 17, 2022
In Bento4 1.6.0-638, there is a null pointer reference in the function...
Moderate
Unreviewed
CVE-2021-40943
was published
Jun 29, 2022
In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference...
High
Unreviewed
CVE-2015-9026
was published
May 17, 2022
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote...
Moderate
Unreviewed
CVE-2016-9430
was published
May 17, 2022
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote...
Moderate
Unreviewed
CVE-2016-9434
was published
May 17, 2022
The PdfFontFactory.cpp:195:62 code in PoDoFo 0.9.5 allows remote attackers to cause a denial of...
Moderate
Unreviewed
CVE-2017-7383
was published
May 17, 2022
The PdfFontFactory.cpp:200:88 code in PoDoFo 0.9.5 allows remote attackers to cause a denial of...
Moderate
Unreviewed
CVE-2017-7382
was published
May 17, 2022
The frame scheduling module has a null pointer dereference vulnerability. Successful exploitation...
High
Unreviewed
CVE-2022-34736
was published
Jul 13, 2022
The _xrealloc function in xlsp_xmalloc.c in OpenSLP 2.0.0 allows remote attackers to cause a...
High
Unreviewed
CVE-2016-4912
was published
May 17, 2022
Insufficient validation of trust input in WebOTP in Google Chrome on Android prior to 100.0.4896...
High
Unreviewed
CVE-2022-1130
was published
Jul 24, 2022
The EAP-PWD module in FreeRADIUS 3.0 through 3.0.8 allows remote attackers to cause a denial of...
Moderate
Unreviewed
CVE-2015-8762
was published
May 17, 2022
The r_pkcs7_parse_cms function in libr/util/r_pkcs7.c in radare2 1.3.0 allows remote attackers to...
Moderate
Unreviewed
CVE-2017-7274
was published
May 17, 2022
The fill_buffer_resample function in util.c in libmp3lame.a in LAME 3.99.5 allows remote...
Moderate
Unreviewed
CVE-2015-9100
was published
May 17, 2022
The NetworkInterface::getHost function in NetworkInterface.cpp in ntopng before 3.0 allows remote...
High
Unreviewed
CVE-2017-7458
was published
May 17, 2022
b/libs/gui/ISurfaceComposer.cpp in Android allows attackers to trigger a denial of service (null...
High
Unreviewed
CVE-2014-7919
was published
May 17, 2022
In TrustZone in all Android releases from CAF using the Linux kernel, an Untrusted Pointer...
High
Unreviewed
CVE-2014-9949
was published
May 17, 2022
The handle_invept function in arch/x86/kvm/vmx.c in the Linux kernel 3.12 through 3.15 allows...
Moderate
Unreviewed
CVE-2017-8106
was published
May 17, 2022
The util_format_is_pure_uint function in vrend_renderer.c in Virgil 3d project (aka virglrenderer...
Moderate
Unreviewed
CVE-2017-5937
was published
May 17, 2022
The PoDoFo::PdfColor::operator function in PdfColor.cpp in PoDoFo 0.9.4 allows remote attackers...
Moderate
Unreviewed
CVE-2017-6845
was published
May 17, 2022
The GraphicsStack::TGraphicsStackElement::SetNonStrokingColorSpace function in graphicsstack.h in...
Moderate
Unreviewed
CVE-2017-6846
was published
May 17, 2022
A CWE-476: NULL Pointer Dereference vulnerability exists that could cause a denial of service of...
High
Unreviewed
CVE-2022-34761
was published
Jul 14, 2022
In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference...
High
Unreviewed
CVE-2015-9027
was published
May 17, 2022
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote...
Moderate
Unreviewed
CVE-2016-9443
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API