Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,992
Erlang
39
GitHub Actions
38
Go
2,634
Maven
5,000+
npm
4,259
NuGet
760
pip
4,052
Pub
12
RubyGems
955
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,382 advisories

Loading
IBM Security Guardium Big Data Intelligence (SonarG) 3.1 specifies permissions for a security... Moderate Unreviewed
CVE-2018-1370 was published May 13, 2022
IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 resets access control settings to the out of the box... Moderate Unreviewed
CVE-2018-1420 was published May 13, 2022
IBM WebSphere MQ 8.0.0.2 through 8.0.0.8 and 9.0.0.0 through 9.0.0.3 could allow users to have... High Unreviewed
CVE-2018-1551 was published May 13, 2022
IBM Spectrum LSF 9.1.1 9.1.2, 9.1.3, and 10.1 could allow a local user to change their job user... Moderate Unreviewed
CVE-2018-1724 was published May 13, 2022
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 could... High Unreviewed
CVE-2018-1711 was published May 13, 2022
IBM Security Key Lifecycle Manager 3.0 specifies permissions for a security-critical resource in... High Unreviewed
CVE-2018-1750 was published May 13, 2022
Imperva SecureSphere running v13.0, v12.0, or v11.5 allows low privileged users to add SSH login... High Unreviewed
CVE-2018-5413 was published May 13, 2022
Weak Directory Permission Vulnerability in Microsoft Windows client in McAfee True Key (TK) 5.1... High Unreviewed
CVE-2018-6755 was published May 13, 2022
** DISPUTED ** OpenWrt mishandles access control in /etc/config/rpcd and the /usr/share/rpcd/acl... High Unreviewed
CVE-2018-11116 was published May 13, 2022
The web interface in McAfee Email Gateway (formerly IronMail) 6.7.1 allows remote authenticated... Moderate Unreviewed
CVE-2010-2116 was published May 13, 2022
KBVault Mysql Free Knowledge Base application package 0.16a comes with a FileExplorer/Explorer... Critical Unreviewed
CVE-2017-9602 was published May 13, 2022
onefilecms.php in OneFileCMS through 2017-10-08 might allow attackers to delete arbitrary files... Moderate Unreviewed
CVE-2018-13122 was published May 13, 2022
** DISPUTED ** PrivateVPN 2.0.31 for macOS suffers from a root privilege escalation vulnerability... High Unreviewed
CVE-2018-7311 was published May 13, 2022
The (1) arq_updater, (2) arqcommitter, (3) standardrestorer, (4) arqglacierrestorer, and (5)... High Unreviewed
CVE-2017-16895 was published May 13, 2022
Icinga Core through 1.14.0 initially executes bin/icinga as root but supports configuration... High Unreviewed
CVE-2017-16882 was published May 13, 2022
Mercurial Incorrect Access Control vulnerability Critical
CVE-2018-1000132 was published for mercurial (pip) May 13, 2022
Privilege escalation in Nagios XI before 5.5.11 allows local attackers to elevate privileges to... High Unreviewed
CVE-2019-9166 was published May 13, 2022
An issue was discovered in the Bosch Smart Camera App before 1.3.1 for Android. Due to setting of... Low Unreviewed
CVE-2019-7729 was published May 13, 2022
IBM Tivoli Storage Manager (IBM Spectrum Protect 8.1.7) could allow a user to restore files and... Moderate Unreviewed
CVE-2019-4093 was published May 13, 2022
An information disclosure vulnerability exists in the way Azure WaLinuxAgent creates swap files... Moderate Unreviewed
CVE-2019-0804 was published May 13, 2022
An information disclosure vulnerability exists when the Microsoft Exchange PowerShell API grants... Moderate Unreviewed
CVE-2019-0588 was published May 13, 2022
Improper file permissions for Intel(R) Data Center Manager SDK before version 5.0.2 may allow an... Moderate Unreviewed
CVE-2019-0111 was published May 13, 2022
Improper file permissions for Intel(R) Data Center Manager SDK before version 5.0.2 may allow an... Moderate Unreviewed
CVE-2019-0108 was published May 13, 2022
An elevation of privilege vulnerability exists when NTFS improperly checks access, aka "NTFS... High Unreviewed
CVE-2018-8411 was published May 13, 2022
NVIDIA GeForce Experience prior to 3.15 contains a vulnerability when GameStream is enabled which... High Unreviewed
CVE-2018-6261 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database