Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,354
Erlang
31
GitHub Actions
22
Go
2,120
Maven
5,000+
npm
3,779
NuGet
681
pip
3,460
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+

429 advisories

Loading
An exploitable memory corruption vulnerability exists in the JavaScript engine of Foxit Software... High Unreviewed
CVE-2019-5031 was published May 24, 2022
In a rare scenario, Check Point R80.30 Security Gateway before JHF Take 50 managed by Check Point... High Unreviewed
CVE-2019-8462 was published May 24, 2022
A vulnerability in the Secure Sockets Layer (SSL) VPN feature of Cisco Adaptive Security... Moderate Unreviewed
CVE-2019-12677 was published May 24, 2022
Zcashd in Zcash before 2.0.7-3 allows discovery of the IP address of a full node that owns a... Moderate Unreviewed
CVE-2019-16930 was published May 24, 2022
An issue was discovered in 3S-Smart CODESYS before 3.5.15.0 . Crafted network packets cause the... High Unreviewed
CVE-2019-9009 was published May 24, 2022
A CWE-248: Uncaught Exception vulnerability exists in Modicon M580 (firmware version prior to V2... High Unreviewed
CVE-2019-6829 was published May 24, 2022
A CWE-248: Uncaught Exception vulnerability exists IN Modicon M580 all versions prior to V2.80,... High Unreviewed
CVE-2019-6830 was published May 24, 2022
A CWE-248: Uncaught Exception vulnerability exists Modicon M580 (firmware version prior to V2.90)... High Unreviewed
CVE-2019-6828 was published May 24, 2022
A CWE-248: Uncaught Exception vulnerability exists in Modicon M580 (firmware versions prior to V2... High Unreviewed
CVE-2019-6809 was published May 24, 2022
An arbitrary file copy vulnerability in mod_copy in ProFTPD up to 1.3.5b allows for remote code... Critical Unreviewed
CVE-2019-12815 was published May 24, 2022
A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon... High Unreviewed
CVE-2019-6807 was published May 24, 2022
A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon... High Unreviewed
CVE-2018-7852 was published May 24, 2022
A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon... High Unreviewed
CVE-2018-7849 was published May 24, 2022
A vulnerability in the Simple Network Management Protocol (SNMP) input packet processor of Cisco... High Unreviewed
CVE-2019-1858 was published May 24, 2022
A vulnerability has been identified in SIMATIC PCS 7 V8.0 and earlier (All versions), SIMATIC PCS... Moderate Unreviewed
CVE-2019-10917 was published May 24, 2022
Legacy C++ Facebook Thrift servers (using cpp instead of cpp2) would not error upon receiving... High Unreviewed
CVE-2019-3565 was published May 24, 2022
Java Facebook Thrift servers would not error upon receiving messages with containers of fields of... High Unreviewed
CVE-2019-3559 was published May 24, 2022
Python Facebook Thrift servers would not error upon receiving messages with containers of fields... High Unreviewed
CVE-2019-3558 was published May 24, 2022
C++ Facebook Thrift servers (using cpp2) would not error upon receiving messages with containers... High Unreviewed
CVE-2019-3552 was published May 24, 2022
Fine Free file before 5.17 allows context-dependent attackers to cause a denial of service ... Moderate Unreviewed
CVE-2014-1943 was published May 17, 2022
Bento4 v1.6.0.0 was discovered to contain a segmentation fault via the component /x86_64... Moderate Unreviewed
CVE-2022-29017 was published May 17, 2022
A vulnerability in SMART-SSL Accelerator functionality for Cisco Wide Area Application Services ... Moderate Unreviewed
CVE-2017-6628 was published May 13, 2022
Improper Handling of Exceptional Conditions in Apache Tomcat High
CVE-2017-5664 was published for org.apache.tomcat:tomcat (Maven) May 13, 2022
sunSUNQ
A vulnerability in the detection engine that handles Secure Sockets Layer (SSL) packets for Cisco... Moderate Unreviewed
CVE-2017-3887 was published May 13, 2022
Huawei smart phones LYO-L21 with software LYO-L21C479B107, LYO-L21C479B107 have a privilege... High Unreviewed
CVE-2017-17172 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database