Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,356
Erlang
31
GitHub Actions
22
Go
2,120
Maven
5,000+
npm
3,781
NuGet
681
pip
3,460
Pub
12
RubyGems
893
Rust
891
Swift
38
Unreviewed advisories
All unreviewed
5,000+

135 advisories

Loading
Microsoft Internet Explorer 8 does not properly handle objects in memory, which allows remote... High Unreviewed
CVE-2011-1251 was published May 13, 2022
The Vector Markup Language (VML) implementation in vgx.dll in Microsoft Internet Explorer 6... High Unreviewed
CVE-2011-1266 was published May 13, 2022
Microsoft Internet Explorer 7 through 9 does not properly handle objects in memory, which allows... High Unreviewed
CVE-2011-1262 was published May 13, 2022
The Timed Interactive Multimedia Extensions (aka HTML+TIME) implementation in Microsoft Internet... High Unreviewed
CVE-2011-1255 was published May 13, 2022
Microsoft Internet Explorer 6 does not properly handle objects in memory, which allows remote... High Unreviewed
CVE-2010-2557 was published May 13, 2022
Microsoft Internet Explorer 9 does not properly handle objects in memory, which allows remote... High Unreviewed
CVE-2011-1998 was published May 13, 2022
Microsoft Internet Explorer 6 through 9 does not properly handle objects in memory, which allows... High Unreviewed
CVE-2011-1964 was published May 13, 2022
Microsoft Internet Explorer 6, 7, and 8 does not properly handle objects in memory, which allows... High Unreviewed
CVE-2010-2556 was published May 13, 2022
Microsoft Internet Explorer 6 through 9 does not properly handle objects in memory, which allows... High Unreviewed
CVE-2011-1261 was published May 13, 2022
Microsoft Internet Explorer 6 through 8 does not properly handle objects in memory, which allows... High Unreviewed
CVE-2011-1254 was published May 13, 2022
Microsoft Internet Explorer 7 through 9 does not properly handle objects in memory, which allows... High Unreviewed
CVE-2011-1963 was published May 13, 2022
Microsoft Internet Explorer 6, 7, and 8 does not properly handle objects in memory, which allows... High Unreviewed
CVE-2010-3346 was published May 13, 2022
Microsoft Internet Explorer 6 does not properly handle objects in memory, which allows remote... High Unreviewed
CVE-2010-3343 was published May 13, 2022
Microsoft Internet Explorer 6 through 9 does not properly handle objects in memory, which allows... High Unreviewed
CVE-2011-1250 was published May 13, 2022
Microsoft Internet Explorer 8 does not properly handle objects in memory, which allows remote... High Unreviewed
CVE-2010-2559 was published May 13, 2022
Microsoft Internet Explorer 8 does not properly handle objects in memory, which allows remote... High Unreviewed
CVE-2010-3345 was published May 13, 2022
Microsoft Internet Explorer 6 through 9 does not properly handle objects in memory, which allows... High Unreviewed
CVE-2011-1995 was published May 13, 2022
Microsoft Internet Explorer 6 through 8 does not properly handle objects in memory, which allows... High Unreviewed
CVE-2011-1256 was published May 13, 2022
VMware ESXi 6.7 without ESXi670-201811401-BG and VMware ESXi 6.5 without ESXi650-201811301-BG,... High Unreviewed
CVE-2018-6981 was published May 13, 2022
ImageMagick before 7.0.5-2 and GraphicsMagick before 1.3.24 use uninitialized memory in the RLE... High Unreviewed
CVE-2017-9098 was published May 13, 2022
In all versions of Node.js 10 prior to 10.9.0, an argument processing flaw can cause `Buffer... High Unreviewed
CVE-2018-7166 was published May 13, 2022
In Artifex Ghostscript 9.23 before 2018-08-24, attackers able to supply crafted PostScript could... High Unreviewed
CVE-2018-15911 was published May 13, 2022
Uninitialized memory use in generator High
CVE-2019-16144 was published for generator (Rust) Aug 25, 2021
Altair HyperView Player versions 2021.1.0.27 and prior are vulnerable to the use of uninitialized... High Unreviewed
CVE-2022-2949 was published Dec 13, 2022
In devs.c in Yubico libu2f-host before 1.1.8, the response to init is misparsed, leaking... High Unreviewed
CVE-2019-9578 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database