Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,319
Erlang
31
GitHub Actions
21
Go
2,077
Maven
5,000+
npm
3,746
NuGet
674
pip
3,435
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+

133 advisories

Loading
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1... Moderate Unreviewed
CVE-2018-0814 was published May 13, 2022
Microsoft Office 2010 SP2, Microsoft Office 2013 SP1 and RT SP1, Microsoft Office 2016, and... Moderate Unreviewed
CVE-2018-0853 was published May 13, 2022
An information disclosure vulnerability exists when the Windows kernel fails to properly... Moderate Unreviewed
CVE-2018-0887 was published May 13, 2022
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1... Moderate Unreviewed
CVE-2018-0897 was published May 13, 2022
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1... Moderate Unreviewed
CVE-2018-0901 was published May 13, 2022
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1... Moderate Unreviewed
CVE-2018-0895 was published May 13, 2022
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1... Moderate Unreviewed
CVE-2018-0926 was published May 13, 2022
An information disclosure vulnerability exists when the Windows kernel improperly initializes... Moderate Unreviewed
CVE-2018-8121 was published May 13, 2022
An information disclosure vulnerability exists when "Kernel Remote Procedure Call Provider"... Moderate Unreviewed
CVE-2018-8407 was published May 13, 2022
An information disclosure vulnerability exists when the Windows kernel improperly initializes... Moderate Unreviewed
CVE-2018-8408 was published May 13, 2022
An information disclosure vulnerability exists when the Windows kernel fails to properly... Moderate Unreviewed
CVE-2018-8419 was published May 13, 2022
An information disclosure vulnerability exists when Remote Procedure Call runtime improperly... Moderate Unreviewed
CVE-2018-8514 was published May 13, 2022
An information disclosure vulnerability exists when the Windows kernel improperly initializes... Moderate Unreviewed
CVE-2019-0663 was published May 13, 2022
An information disclosure vulnerability exists when the Windows kernel improperly initializes... Moderate Unreviewed
CVE-2019-0767 was published May 13, 2022
An information disclosure vulnerability exists when the Windows kernel fails to properly... Moderate Unreviewed
CVE-2019-0782 was published May 13, 2022
A memory initialization issue was addressed with improved memory handling. This issue is fixed in... Moderate Unreviewed
CVE-2019-6208 was published May 13, 2022
net/core/ethtool.c in the Linux kernel before 2.6.36 does not initialize certain data structures,... Moderate Unreviewed
CVE-2010-4655 was published May 13, 2022
drivers/scsi/bfa/bfa_core.c in the Linux kernel before 2.6.35 does not initialize a certain port... Moderate Unreviewed
CVE-2010-4343 was published May 13, 2022
A vulnerability in the Hot Standby Router Protocol (HSRP) subsystem of Cisco IOS and IOS XE... Moderate Unreviewed
CVE-2019-1761 was published May 13, 2022
Linux kernel vhost since version 4.8 does not properly initialize memory in messages passed... Moderate Unreviewed
CVE-2018-1118 was published May 13, 2022
A flaw was discovered in gdm 3.24.1 where gdm greeter was no longer setting the ran_once boolean... Moderate Unreviewed
CVE-2017-12164 was published May 13, 2022
A denial of service vulnerability in the Android media framework (libavc). Product: Android.... Moderate Unreviewed
CVE-2017-0735 was published May 13, 2022
Uninitialized data in endianness conversion in the XEvent handling of the X.Org X Server before... Moderate Unreviewed
CVE-2017-10972 was published May 13, 2022
Nagios Core before 4.3.3 creates a nagios.lock PID file after dropping privileges to a non-root... Moderate Unreviewed
CVE-2017-12847 was published May 13, 2022
UnrealIRCd 4.0.13 and earlier creates a PID file after dropping privileges to a non-root account,... Moderate Unreviewed
CVE-2017-13649 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database