GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
243 advisories
Filter by severity
A vulnerability in the FTP inspection engine of Cisco Firepower Threat Defense (FTD) Software...
High
Unreviewed
CVE-2018-15390
was published
May 13, 2022
A vulnerability in the ingress flow creation functionality of Cisco Adaptive Security Appliance ...
High
Unreviewed
CVE-2018-0228
was published
May 13, 2022
A vulnerability in the Cisco Aironet Series Access Points (APs) software could allow an...
Moderate
Unreviewed
CVE-2018-0381
was published
May 13, 2022
A certain Red Hat patch for net/ipv4/route.c in the Linux kernel 2.6.18 on Red Hat Enterprise...
High
Unreviewed
CVE-2009-4272
was published
May 2, 2022
The kernel in Sun Solaris 8, 9, and 10, and OpenSolaris before snv_103, does not properly handle...
Moderate
Unreviewed
CVE-2009-2857
was published
May 2, 2022
The Solaris pollset feature in the Event Port backend in poll/unix/port.c in the Apache Portable...
Moderate
Unreviewed
CVE-2009-2699
was published
May 2, 2022
The inode double locking code in fs/ocfs2/file.c in the Linux kernel 2.6.30 before 2.6.30-rc3, 2...
Low
Unreviewed
CVE-2009-1961
was published
May 2, 2022
The ptrace_start function in kernel/ptrace.c in the Linux kernel 2.6.18 does not properly handle...
Moderate
Unreviewed
CVE-2009-1388
was published
May 2, 2022
net/ipv4/udp.c in the Linux kernel before 2.6.29.1 performs an unlocking step in certain...
Low
Unreviewed
CVE-2009-1243
was published
May 2, 2022
The inotify_read function in the Linux kernel 2.6.27 to 2.6.27.13, 2.6.28 to 2.6.28.2, and 2.6.29...
Moderate
Unreviewed
CVE-2009-0935
was published
May 2, 2022
fs/splice.c in the splice subsystem in the Linux kernel before 2.6.22.2 does not properly handle...
Moderate
Unreviewed
CVE-2008-4302
was published
May 2, 2022
The nlmclnt_mark_reclaim in clntlock.c in NFS lockd in Linux kernel before 2.6.16 allows remote...
Low
Unreviewed
CVE-2006-5158
was published
May 1, 2022
The kernel in Red Hat Enterprise Linux 3, when running on SMP systems, allows local users to...
Moderate
Unreviewed
CVE-2006-4342
was published
May 1, 2022
The Server Message Block (SMB) driver (MRXSMB.SYS) in Microsoft Windows 2000 SP4, XP SP1 and SP2,...
Low
Unreviewed
CVE-2006-2374
was published
May 1, 2022
Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denial of service (deadlock)...
Moderate
Unreviewed
CVE-2006-2275
was published
May 1, 2022
The handle_stop_signal function in signal.c in Linux kernel 2.6.11 up to other versions before 2...
Moderate
Unreviewed
CVE-2005-3847
was published
May 1, 2022
Race condition in Linux 2.6, when threads are sharing memory mapping via CLONE_VM (such as...
Low
Unreviewed
CVE-2005-3106
was published
May 1, 2022
Array index overflow in the xfrm_sk_policy_insert function in xfrm_user.c in Linux kernel 2.6...
Low
Unreviewed
CVE-2005-2456
was published
May 1, 2022
dump 0.4 b10 through b29 allows local users to cause a denial of service (execution prevention)...
Low
Unreviewed
CVE-2002-1914
was published
Apr 30, 2022
tip on multiple BSD-based operating systems allows local users to cause a denial of service ...
Low
Unreviewed
CVE-2002-1915
was published
Apr 30, 2022
Heysoft EventSave 5.1 and 5.2 and Heysoft EventSave+ 5.1 and 5.2 does not check whether the log...
Low
Unreviewed
CVE-2002-1869
was published
Apr 30, 2022
mod_cgi in Apache 2.0.39 and 2.0.40 allows local users and possibly remote attackers to cause a...
Moderate
Unreviewed
CVE-2002-1850
was published
Apr 30, 2022
Windows 2000 allows local users to prevent the application of new group policy settings by...
Moderate
Unreviewed
CVE-2002-0051
was published
Apr 30, 2022
ZoneAlarm and ZoneAlarm Pro allows a local attacker to cause a denial of service by running a...
Low
Unreviewed
CVE-2001-0682
was published
Apr 30, 2022
qpopper POP server creates lock files with predictable names, which allows local users to cause a...
Low
Unreviewed
CVE-2000-1198
was published
Apr 30, 2022
ProTip!
Advisories are also available from the
GraphQL API