GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
222 advisories
Filter by severity
A race condition in perf_event_open() allows local attackers to leak sensitive data from setuid...
Moderate
Unreviewed
CVE-2019-3901
was published
May 24, 2022
The pfs_getextattr function in FreeBSD 7.x before 7.3-RELEASE and 8.x before 8.0-RC1 unlocks a...
High
Unreviewed
CVE-2010-4210
was published
May 17, 2022
In Lenovo systems, SMM BIOS Write Protection is used to prevent writes to SPI Flash. While this...
Low
Unreviewed
CVE-2019-6156
was published
May 13, 2022
An issue was discovered in ShopXO 1.2.0. In the application\install\controller\Index.php file,...
Critical
Unreviewed
CVE-2019-5886
was published
May 13, 2022
A vulnerability in the FTP inspection engine of Cisco Firepower Threat Defense (FTD) Software...
High
Unreviewed
CVE-2018-15390
was published
May 13, 2022
A vulnerability in the ingress flow creation functionality of Cisco Adaptive Security Appliance ...
High
Unreviewed
CVE-2018-0228
was published
May 13, 2022
A vulnerability in the Cisco Aironet Series Access Points (APs) software could allow an...
Moderate
Unreviewed
CVE-2018-0381
was published
May 13, 2022
A certain Red Hat patch for net/ipv4/route.c in the Linux kernel 2.6.18 on Red Hat Enterprise...
High
Unreviewed
CVE-2009-4272
was published
May 2, 2022
The kernel in Sun Solaris 8, 9, and 10, and OpenSolaris before snv_103, does not properly handle...
Moderate
Unreviewed
CVE-2009-2857
was published
May 2, 2022
The Solaris pollset feature in the Event Port backend in poll/unix/port.c in the Apache Portable...
Moderate
Unreviewed
CVE-2009-2699
was published
May 2, 2022
The inode double locking code in fs/ocfs2/file.c in the Linux kernel 2.6.30 before 2.6.30-rc3, 2...
Low
Unreviewed
CVE-2009-1961
was published
May 2, 2022
The ptrace_start function in kernel/ptrace.c in the Linux kernel 2.6.18 does not properly handle...
Moderate
Unreviewed
CVE-2009-1388
was published
May 2, 2022
net/ipv4/udp.c in the Linux kernel before 2.6.29.1 performs an unlocking step in certain...
Low
Unreviewed
CVE-2009-1243
was published
May 2, 2022
The inotify_read function in the Linux kernel 2.6.27 to 2.6.27.13, 2.6.28 to 2.6.28.2, and 2.6.29...
Moderate
Unreviewed
CVE-2009-0935
was published
May 2, 2022
fs/splice.c in the splice subsystem in the Linux kernel before 2.6.22.2 does not properly handle...
Moderate
Unreviewed
CVE-2008-4302
was published
May 2, 2022
The nlmclnt_mark_reclaim in clntlock.c in NFS lockd in Linux kernel before 2.6.16 allows remote...
Low
Unreviewed
CVE-2006-5158
was published
May 1, 2022
The kernel in Red Hat Enterprise Linux 3, when running on SMP systems, allows local users to...
Moderate
Unreviewed
CVE-2006-4342
was published
May 1, 2022
The Server Message Block (SMB) driver (MRXSMB.SYS) in Microsoft Windows 2000 SP4, XP SP1 and SP2,...
Low
Unreviewed
CVE-2006-2374
was published
May 1, 2022
Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denial of service (deadlock)...
Moderate
Unreviewed
CVE-2006-2275
was published
May 1, 2022
The handle_stop_signal function in signal.c in Linux kernel 2.6.11 up to other versions before 2...
Moderate
Unreviewed
CVE-2005-3847
was published
May 1, 2022
Race condition in Linux 2.6, when threads are sharing memory mapping via CLONE_VM (such as...
Low
Unreviewed
CVE-2005-3106
was published
May 1, 2022
Array index overflow in the xfrm_sk_policy_insert function in xfrm_user.c in Linux kernel 2.6...
Low
Unreviewed
CVE-2005-2456
was published
May 1, 2022
tip on multiple BSD-based operating systems allows local users to cause a denial of service ...
Low
Unreviewed
CVE-2002-1915
was published
Apr 30, 2022
dump 0.4 b10 through b29 allows local users to cause a denial of service (execution prevention)...
Low
Unreviewed
CVE-2002-1914
was published
Apr 30, 2022
Heysoft EventSave 5.1 and 5.2 and Heysoft EventSave+ 5.1 and 5.2 does not check whether the log...
Low
Unreviewed
CVE-2002-1869
was published
Apr 30, 2022
ProTip!
Advisories are also available from the
GraphQL API