Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+

228 advisories

Loading
In the Linux kernel before 4.16.4, a double-locking error in drivers/usb/dwc3/gadget.c may... Moderate Unreviewed
CVE-2019-14763 was published May 24, 2022
HP has identified a security vulnerability with some versions of Workstation BIOS (UEFI Firmware)... High Unreviewed
CVE-2019-6322 was published May 24, 2022
HP has identified a security vulnerability with some versions of Workstation BIOS (UEFI Firmware)... High Unreviewed
CVE-2019-6321 was published May 24, 2022
A vulnerability in the Remote Package Manager (RPM) subsystem of Cisco NX-OS Software could allow... Moderate Unreviewed
CVE-2019-1732 was published May 24, 2022
A vulnerability in the logic that handles access control to one of the hardware components in... High Unreviewed
CVE-2019-1649 was published May 24, 2022
The coredump implementation in the Linux kernel before 5.0.10 does not use locking or other... High Unreviewed
CVE-2019-11599 was published May 24, 2022
A race condition in perf_event_open() allows local attackers to leak sensitive data from setuid... Moderate Unreviewed
CVE-2019-3901 was published May 24, 2022
The pfs_getextattr function in FreeBSD 7.x before 7.3-RELEASE and 8.x before 8.0-RC1 unlocks a... High Unreviewed
CVE-2010-4210 was published May 17, 2022
In Lenovo systems, SMM BIOS Write Protection is used to prevent writes to SPI Flash. While this... Low Unreviewed
CVE-2019-6156 was published May 13, 2022
An issue was discovered in ShopXO 1.2.0. In the application\install\controller\Index.php file,... Critical Unreviewed
CVE-2019-5886 was published May 13, 2022
A vulnerability in the FTP inspection engine of Cisco Firepower Threat Defense (FTD) Software... High Unreviewed
CVE-2018-15390 was published May 13, 2022
A vulnerability in the ingress flow creation functionality of Cisco Adaptive Security Appliance ... High Unreviewed
CVE-2018-0228 was published May 13, 2022
A vulnerability in the Cisco Aironet Series Access Points (APs) software could allow an... Moderate Unreviewed
CVE-2018-0381 was published May 13, 2022
A certain Red Hat patch for net/ipv4/route.c in the Linux kernel 2.6.18 on Red Hat Enterprise... High Unreviewed
CVE-2009-4272 was published May 2, 2022
The kernel in Sun Solaris 8, 9, and 10, and OpenSolaris before snv_103, does not properly handle... Moderate Unreviewed
CVE-2009-2857 was published May 2, 2022
The Solaris pollset feature in the Event Port backend in poll/unix/port.c in the Apache Portable... Moderate Unreviewed
CVE-2009-2699 was published May 2, 2022
The inode double locking code in fs/ocfs2/file.c in the Linux kernel 2.6.30 before 2.6.30-rc3, 2... Low Unreviewed
CVE-2009-1961 was published May 2, 2022
The ptrace_start function in kernel/ptrace.c in the Linux kernel 2.6.18 does not properly handle... Moderate Unreviewed
CVE-2009-1388 was published May 2, 2022
net/ipv4/udp.c in the Linux kernel before 2.6.29.1 performs an unlocking step in certain... Low Unreviewed
CVE-2009-1243 was published May 2, 2022
The inotify_read function in the Linux kernel 2.6.27 to 2.6.27.13, 2.6.28 to 2.6.28.2, and 2.6.29... Moderate Unreviewed
CVE-2009-0935 was published May 2, 2022
fs/splice.c in the splice subsystem in the Linux kernel before 2.6.22.2 does not properly handle... Moderate Unreviewed
CVE-2008-4302 was published May 2, 2022
The nlmclnt_mark_reclaim in clntlock.c in NFS lockd in Linux kernel before 2.6.16 allows remote... Low Unreviewed
CVE-2006-5158 was published May 1, 2022
The kernel in Red Hat Enterprise Linux 3, when running on SMP systems, allows local users to... Moderate Unreviewed
CVE-2006-4342 was published May 1, 2022
The Server Message Block (SMB) driver (MRXSMB.SYS) in Microsoft Windows 2000 SP4, XP SP1 and SP2,... Low Unreviewed
CVE-2006-2374 was published May 1, 2022
Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denial of service (deadlock)... Moderate Unreviewed
CVE-2006-2275 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database