GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,585
Composer 4,992
Erlang 39
GitHub Actions 38
Go 2,635
Maven 6,103
npm 4,262
NuGet 760
pip 4,056
Pub 12
RubyGems 955
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,336

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,383 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

LogicalDoc Community Edition 7.5.3 and prior contain an Incorrect access control which could... High Unreviewed

CVE-2017-1000022 was published May 13, 2022

Ubiquiti UCRM versions 2.3.0 to 2.7.7 allow an authenticated user to read arbitrary files in the... Moderate Unreviewed

CVE-2017-0913 was published May 13, 2022

A denial of service vulnerability in the Android framework (syncstorageengine). Product: Android.... High Unreviewed

CVE-2017-0845 was published May 13, 2022

An elevation of privilege vulnerability in the Android framework (window manager). Product:... High Unreviewed

CVE-2017-0831 was published May 13, 2022

An elevation of privilege vulnerability in the Android framework (device policy client). Product:... High Unreviewed

CVE-2017-0830 was published May 13, 2022

A elevation of privilege vulnerability in the Android system (nfc). Product: Android. Versions: 5... High Unreviewed

CVE-2017-0784 was published May 13, 2022

A elevation of privilege vulnerability in the Android framework (windowmanager). Product: Android... High Unreviewed

CVE-2017-0752 was published May 13, 2022

A elevation of privilege vulnerability in the Android system ui. Product: Android. Versions: 4.4... High Unreviewed

CVE-2017-0703 was published May 13, 2022

An Elevation of Privilege vulnerability in Bluetooth could potentially enable a local malicious... Moderate Unreviewed

CVE-2017-0601 was published May 13, 2022

An elevation of privilege vulnerability in the Framework APIs could enable a local malicious... High Unreviewed

CVE-2017-0593 was published May 13, 2022

An elevation of privilege vulnerability in Bluetooth could enable a proximate attacker to manage... Moderate Unreviewed

CVE-2017-0423 was published May 13, 2022

All versions of the NVIDIA GPU Display Driver contain a vulnerability in the GPU firmware where... High Unreviewed

CVE-2017-0352 was published May 13, 2022

NVIDIA GPU Display Driver R378 contains a vulnerability in the kernel mode layer handler where... High Unreviewed

CVE-2017-0311 was published May 13, 2022

All versions of NVIDIA GPU and GeForce Experience installer contain a vulnerability where it... High Unreviewed

CVE-2017-0317 was published May 13, 2022

Dropbear before 2017.75 might allow local users to read certain files as root, if the file has... Moderate Unreviewed

CVE-2017-9079 was published May 13, 2022

coreBOS version 7.0 and earlier contains a Incorrect Access Control vulnerability in Module:... Moderate Unreviewed

CVE-2018-1000547 was published May 13, 2022

A permissions flaw was found in redis, which sets weak permissions on certain files and... Moderate Unreviewed

CVE-2016-2121 was published May 13, 2022

A local information disclosure issue was found in dracut before 045 when generating initramfs... High Unreviewed

CVE-2016-8637 was published May 13, 2022

Nextcloud Server before 9.0.55 and 10.0.2 suffers from a creation of folders in read-only folders... Moderate Unreviewed

CVE-2017-0884 was published May 13, 2022

Nextcloud Server before 9.0.55 and 10.0.2 suffers from a permission increase on re-sharing via... Moderate Unreviewed

CVE-2017-0883 was published May 13, 2022

Synology Download Station 3.8.x before 3.8.5-3475 and 3.x before 3.5-2984 uses weak permissions ... High Unreviewed

CVE-2017-11156 was published May 13, 2022

An Incorrect Permission Assignment for Critical Resource issue was discovered in Advantech... High Unreviewed

CVE-2017-12713 was published May 13, 2022

IBM QRadar 7.3 and 7.3.1 specifies permissions for a security-critical resource in a way that... Moderate Unreviewed

CVE-2017-1624 was published May 13, 2022

Incorrect Permission Assignment for Critical Resource in Jenkins Moderate

CVE-2017-2612 was published for org.jenkins-ci.main:jenkins-core (Maven) May 13, 2022

In versions 4.3.2-R4 and prior of Cambium Networks cnPilot firmware, although the option to... High Unreviewed

CVE-2017-5260 was published May 13, 2022

Previous 1…45…56 Next

Previous 1 2 … 43 44 45 46 47 … 55 56 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,383 advisories