GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,944
Erlang
29
GitHub Actions
16
Go
1,729
Maven
4,955
npm
3,489
NuGet
607
pip
3,055
Pub
10
RubyGems
832
Rust
778
Swift
34
Unreviewed advisories
All unreviewed
5,000+
3,879 advisories
Filter by severity
use-after-free vulnerability in Rust array-queue
Moderate
CVE-2020-35900
was published
for
array-queue
(Rust)
Aug 25, 2021
Vulnerable dependencies in Nokogiri
High
GHSA-fq42-c5rg-92c2
was published
for
nokogiri
(RubyGems)
Feb 25, 2022
Use after free in libpulse-binding
High
GHSA-ghpq-vjxw-ch5w
was published
for
libpulse-binding
(Rust)
Aug 25, 2021
Use after free in actix-service
Moderate
CVE-2020-35899
was published
for
actix-service
(Rust)
Aug 25, 2021
Use after free in actix-utils
Critical
CVE-2020-35898
was published
for
actix-utils
(Rust)
Aug 25, 2021
iana-time-zone vulnerable to use after free in MacOS / iOS implementation
Moderate
GHSA-3fg9-hcq5-vxrc
was published
for
iana-time-zone
(Rust)
Aug 30, 2022
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before...
Critical
Unreviewed
CVE-2016-4174
was published
May 14, 2022
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before...
Critical
Unreviewed
CVE-2016-4173
was published
May 14, 2022
Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable use after free...
Critical
Unreviewed
CVE-2017-3003
was published
May 14, 2022
Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable use after free...
Critical
Unreviewed
CVE-2017-3001
was published
May 14, 2022
An issue was discovered in the Arm Mali GPU Kernel Driver. There is a use-after-free. A non...
High
Unreviewed
CVE-2022-46891
was published
Jan 17, 2023
Use After Free in GitHub repository gpac/gpac prior to 2.3.0-DEV.
High
Unreviewed
CVE-2023-0358
was published
Jan 18, 2023
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before...
High
Unreviewed
CVE-2016-4222
was published
May 14, 2022
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before...
Critical
Unreviewed
CVE-2016-7020
was published
May 14, 2022
Use-after-free vulnerability in the Transform object implementation in Adobe Flash Player before...
High
Unreviewed
CVE-2016-1016
was published
May 14, 2022
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before...
Critical
Unreviewed
CVE-2016-4226
was published
May 14, 2022
Adobe Flash Player versions 29.0.0.113 and earlier have an exploitable Use-After-Free...
High
Unreviewed
CVE-2018-4932
was published
May 14, 2022
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20...
Critical
Unreviewed
CVE-2016-0983
was published
May 17, 2022
Use-after-free in actix-codec
Critical
CVE-2020-35902
was published
for
actix-codec
(Rust)
Aug 25, 2021
Use after free vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One (v4...
High
Unreviewed
CVE-2022-25325
was published
Mar 11, 2022
Use after free vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One (v4...
High
Unreviewed
CVE-2022-25230
was published
Mar 11, 2022
A use after free vulnerability was discovered in PDFTron SDK version 9.2.0. A crafted PDF can...
High
Unreviewed
CVE-2022-24960
was published
Mar 11, 2022
ProTip!
Advisories are also available from the
GraphQL API