GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,873
Erlang
37
GitHub Actions
36
Go
2,519
Maven
5,000+
npm
4,156
NuGet
736
pip
3,956
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
1,205 advisories
Filter by severity
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the...
High
Unreviewed
CVE-2018-11906
was published
May 13, 2022
Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an...
High
Unreviewed
CVE-2017-8625
was published
May 13, 2022
On Linux systems, if the content process is compromised, the sandbox broker will allow files to...
High
Unreviewed
CVE-2017-7794
was published
May 13, 2022
The Mozilla Maintenance Service "helper.exe" application creates a temporary directory writable...
Moderate
Unreviewed
CVE-2017-7761
was published
May 13, 2022
An issue was discovered in Veritas NetBackup Before 7.7 and NetBackup Appliance Before 2.7. There...
Moderate
Unreviewed
CVE-2017-6404
was published
May 13, 2022
The BIOS in Intel Compute Stick systems based on 6th Gen Intel Core processors prior to version...
Low
Unreviewed
CVE-2017-5684
was published
May 13, 2022
The BIOS in Intel NUC systems based on 6th Gen Intel Core processors prior to version SY0059 may...
Low
Unreviewed
CVE-2017-5686
was published
May 13, 2022
The BIOS in Intel NUC systems based on 6th Gen Intel Core processors prior to version KY0045 may...
Low
Unreviewed
CVE-2017-5685
was published
May 13, 2022
During installation of Ambari 2.4.0 through 2.4.2, Ambari Server artifacts are not created with...
Critical
Unreviewed
CVE-2017-5642
was published
May 13, 2022
With OxygenOS before 4.0.3, when a charger is connected to a powered-off OnePlus 3 or 3T device,...
Moderate
Unreviewed
CVE-2017-5622
was published
May 13, 2022
An issue was discovered in Pivotal PCF Tile Generator versions prior to 6.0.0. Tiles created by...
High
Unreviewed
CVE-2017-4975
was published
May 13, 2022
MitraStar GPT-2541GNAC (HGU) 1.00(VNJ0)b1 and DSL-100HN-T1 ES_113WJY0b16 devices allow remote...
High
Unreviewed
CVE-2017-16522
was published
May 13, 2022
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware...
High
Unreviewed
CVE-2017-14425
was published
May 13, 2022
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware...
High
Unreviewed
CVE-2017-14424
was published
May 13, 2022
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware...
High
Unreviewed
CVE-2017-14427
was published
May 13, 2022
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 might create files using the default...
High
Unreviewed
CVE-2017-1382
was published
May 13, 2022
An unspecified server utility in NoMachine before 5.3.10 on Mac OS X and Linux allows...
High
Unreviewed
CVE-2017-12763
was published
May 13, 2022
HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) before 4.0.24 uses weak...
High
Unreviewed
CVE-2017-11741
was published
May 13, 2022
An elevation of privilege vulnerability in the Android media framework (mediaanalytics). Product:...
Critical
Unreviewed
CVE-2017-0847
was published
May 13, 2022
Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw, allowing a sysops to undelete pages,...
Moderate
Unreviewed
CVE-2017-0369
was published
May 13, 2022
Synology Download Station 3.8.x before 3.8.5-3475 and 3.x before 3.5-2984 uses weak permissions ...
High
Unreviewed
CVE-2017-11156
was published
May 13, 2022
A vulnerability in the web-based user interface (web UI) of Cisco IOS XE 16.2 could allow an...
High
Unreviewed
CVE-2017-12230
was published
May 13, 2022
An Incorrect Default Permissions issue was discovered in AzeoTech DAQFactory versions prior to 17...
High
Unreviewed
CVE-2017-12699
was published
May 13, 2022
An Incorrect Default Permissions issue was discovered in Schneider Electric Wonderware InduSoft...
High
Unreviewed
CVE-2017-7968
was published
May 13, 2022
Incorrect default permissions vulnerability in synouser.conf in Synology Router Manager (SRM)...
Moderate
Unreviewed
CVE-2018-13287
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API