GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,093
Composer 4,324
Erlang 31
GitHub Actions 21
Go 2,087
Maven 5,251
npm 3,751
NuGet 674
pip 3,437
Pub 12
RubyGems 892
Rust 881
Swift 37

Unreviewed advisories

All unreviewed 241,680

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

86 advisories

Filter by severity

Sort by

Least recently updated

An incomplete-cleanup vulnerability in the Office rendering engine of Gotenberg through 6.2.1... Critical Unreviewed

CVE-2020-13451 was published May 24, 2022

In stopZygoteLocked of AppZygote.java, there is an insufficient cleanup. This could lead to local... Moderate Unreviewed

CVE-2020-0258 was published May 24, 2022

Incomplete cleanup from specific special register read operations in some Intel(R) Processors may... Low Unreviewed

CVE-2020-0543 was published May 24, 2022

"Clear History and Website Data" did not clear the history. The issue was addressed with improved... Moderate Unreviewed

CVE-2019-8768 was published May 24, 2022

An issue existed in the pausing of FaceTime video. The issue was resolved with improved logic.... Moderate Unreviewed

CVE-2019-8550 was published May 24, 2022

RSA BSAFE Crypto-C Micro Edition, all versions prior to 4.1.4, is vulnerable to three (3)... Moderate Unreviewed

CVE-2019-3733 was published May 24, 2022

Little Snitch versions 4.4.0 fixes a vulnerability in a privileged helper tool. However, the... Moderate Unreviewed

CVE-2019-13014 was published May 24, 2022

Pydio Cells before 1.5.0 does incomplete cleanup of a user's data upon deletion. This allows a... Moderate Unreviewed

CVE-2019-12902 was published May 24, 2022

A vulnerability in Cisco Application Policy Infrastructure Controller (APIC) Software could allow... Moderate Unreviewed

CVE-2019-1586 was published May 24, 2022

An issue was discovered in Xen through 4.11.x on AMD x86 platforms, possibly allowing guest OS... High Unreviewed

CVE-2018-19961 was published May 13, 2022

Incomplete Cleanup vulnerability in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows an attacker to... Moderate Unreviewed

CVE-2018-12332 was published May 13, 2022

An issue was discovered in chan_skinny.c in Asterisk Open Source 13.18.2 and older, 14.7.2 and... High Unreviewed

CVE-2017-17090 was published May 13, 2022

In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and Websafe... High Unreviewed

CVE-2017-0303 was published May 13, 2022

The image-upload feature in ProjeQtOr 7.2.5 allows remote attackers to execute arbitrary code by... High Unreviewed

CVE-2018-18924 was published May 13, 2022

Since Linux kernel version 3.2, the mremap() syscall performs TLB flushes after dropping... High Unreviewed

CVE-2018-18281 was published May 13, 2022

Insufficiently quick clearing of stale rendered content in Navigation in Google Chrome prior to... Moderate Unreviewed

CVE-2018-17467 was published May 13, 2022

A vulnerability in the installation process of Cisco HyperFlex Software could allow an... Moderate Unreviewed

CVE-2018-15407 was published May 13, 2022

In FreeBSD before 11.2-STABLE(r343782), 11.2-RELEASE-p9, 12.0-STABLE(r343781), and 12.0-RELEASE... Moderate Unreviewed

CVE-2019-5595 was published May 13, 2022

RSA BSAFE SSL-J versions prior to 6.2.4 contain a Heap Inspection vulnerability that could allow... Moderate Unreviewed

CVE-2018-11068 was published May 13, 2022

Oracle Formsbuilder 9.0.4 stores database usernames and passwords in a temporary file, which is... Low Unreviewed

CVE-2005-2293 was published May 1, 2022

BEA WebLogic Server and WebLogic Express 7.0 through Service Pack 5 does not log out users when... High Unreviewed

CVE-2005-1744 was published May 1, 2022

SecureClean 3 build 2.0 does not clear Windows alternate data streams that are attached to files... Moderate Unreviewed

CVE-2002-2070 was published Apr 30, 2022

BestCrypt BCWipe 1.0.7 and 2.0 through 2.35.1 does not clear Windows alternate data streams that... Moderate Unreviewed

CVE-2002-2066 was published Apr 30, 2022

East-Tec Eraser 2002 does not clear Windows alternate data streams that are attached to files on... Moderate Unreviewed

CVE-2002-2067 was published Apr 30, 2022

Eraser 5.3 does not clear Windows alternate data streams that are attached to files on NTFS file... Moderate Unreviewed

CVE-2002-2068 was published Apr 30, 2022

Previous 1 2 3 4 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

86 advisories