Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,874 advisories

Loading
** DISPUTED ** An issue was discovered in SMA Solar Technology products. When signed into Sunny... High Unreviewed
CVE-2017-9862 was published May 17, 2022
A vulnerability in the AutoVNF automation tool of the Cisco Ultra Services Framework could allow... High Unreviewed
CVE-2017-6771 was published May 17, 2022
Fortinet FortiManager 5.0.x before 5.0.11, 5.2.x before 5.2.2 allows remote attackers to obtain... High Unreviewed
CVE-2015-3614 was published May 17, 2022
Directory traversal vulnerability in the HP-ChaiSOE/1.0 web server on the HP LaserJet P3015... High Unreviewed
CVE-2011-4785 was published May 17, 2022
Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to read... High Unreviewed
CVE-2013-5490 was published May 17, 2022
OpenStack Nova Live migration can leak root disk into ephemeral storage High
CVE-2013-7130 was published for nova (pip) May 17, 2022
The samsung_extdisp driver in the Samsung S4 (GT-I9500) I9500XXUEMK8 kernel 3.4 and earlier... High Unreviewed
CVE-2015-1800 was published May 17, 2022
Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6 MP5 allows remote authenticated users... High Unreviewed
CVE-2016-3650 was published May 17, 2022
Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6 MP5 allows remote authenticated users... High Unreviewed
CVE-2016-3648 was published May 17, 2022
Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6 MP5 allows remote authenticated users... High Unreviewed
CVE-2016-3651 was published May 17, 2022
net/proxy/proxy_service.cc in the Proxy Auto-Config (PAC) feature in Google Chrome before 52.0... High Unreviewed
CVE-2016-5134 was published May 17, 2022
An issue was discovered on NETGEAR R8500, R8300, R7000, R6400, R7300, R7100LG, R6300v2,... High Unreviewed
CVE-2017-5521 was published May 17, 2022
Unspecified vulnerability in the BI Publisher (formerly XML Publisher) component in Oracle Fusion... High Unreviewed
CVE-2016-3473 was published May 17, 2022
NUUO NVRmini 2 1.7.5 through 3.0.0, NUUO NVRsolo 1.0.0 through 3.0.0, and NETGEAR ReadyNAS... High Unreviewed
CVE-2016-5677 was published May 17, 2022
Apache Atlas produces Stack trace in error response High
CVE-2017-3154 was published for org.apache.atlas:atlas-common (Maven) May 17, 2022
Soplanning 1.32 and earlier generates static links for sharing ICAL calendars with embedded login... High Unreviewed
CVE-2014-8675 was published May 17, 2022
NetApp OnCommand Unified Manager for Clustered Data ONTAP before 7.2P1 does not set the secure... High Unreviewed
CVE-2017-14053 was published May 17, 2022
TelescopeJS before 0.15 leaks user bcrypt password hashes in websocket messages, which might... High Unreviewed
CVE-2015-3454 was published May 17, 2022
Emacs 24.4 allows remote attackers to bypass security restrictions. High Unreviewed
CVE-2014-9483 was published May 17, 2022
ZTE OX-330P, ZXHN H108N, W300V1.0.0S_ZRD_TR1_D68, HG110, GAN9.8T101A-B, MF28G, ZXHN H108N use non... High Unreviewed
CVE-2015-7255 was published May 17, 2022
Hikvision iVMS-4200 devices before v2.6.2.7 allow local users to generate password-recovery codes... High Unreviewed
CVE-2017-13774 was published May 17, 2022
ZTE ZXHN H108N R1A devices before ZTE.bhs.ZXHNH108NR1A.k_PE allow remote attackers to discover... High Unreviewed
CVE-2015-7248 was published May 17, 2022
Polycom SoundStation IP, VVX, and RealPresence Trio that are running software older than UCS 4.0... High Unreviewed
CVE-2017-12857 was published May 17, 2022
A information disclosure vulnerability in the N/A memory subsystem. Product: Android. Versions:... High Unreviewed
CVE-2017-0793 was published May 17, 2022
IBM QRadar 7.2 and 7.3 discloses sensitive information to unauthorized users. The information can... High Unreviewed
CVE-2017-1162 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database