Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,992
Erlang
39
GitHub Actions
38
Go
2,634
Maven
5,000+
npm
4,258
NuGet
760
pip
4,051
Pub
12
RubyGems
955
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,382 advisories

Loading
The Gentoo mail-filter/assp package 1.9.8.13030 and earlier allows local users to gain privileges... High Unreviewed
CVE-2017-16659 was published May 13, 2022
Philips e-Alert Unit (non-medical device), Version R2.1 and prior. The software, upon... High Unreviewed
CVE-2018-8848 was published May 13, 2022
A vulnerability in the Tetration Analytics agent for Cisco Nexus 9000 Series Switches in... High Unreviewed
CVE-2019-1618 was published May 13, 2022
A vulnerability in the filesystem permissions of Cisco NX-OS Software could allow an... High Unreviewed
CVE-2019-1601 was published May 13, 2022
A vulnerability in the Bash shell implementation for Cisco NX-OS Software could allow an... High Unreviewed
CVE-2019-1596 was published May 13, 2022
Quick Emulator (Qemu) built with the VirtFS, host directory sharing via Plan 9 File System(9pfs)... High Unreviewed
CVE-2017-7493 was published May 13, 2022
IBM Security Access Manager Appliance 8.0.0 and 9.0.0 specifies permissions for a security... Moderate Unreviewed
CVE-2017-1459 was published May 13, 2022
In Foreman it was discovered that the delete compute resource operation, when executed from the... Moderate Unreviewed
CVE-2019-3893 was published May 13, 2022
postgresql before versions 10.4, 9.6.9 is vulnerable in the adminpack extension, the pg_catalog... Critical Unreviewed
CVE-2018-1115 was published May 13, 2022
Statamic framework Incorrect Permission Assignment High
CVE-2017-11422 was published for statamic/cms (Composer) May 13, 2022
Bolt Improper Access Control Moderate
CVE-2017-16754 was published for bolt/bolt (Composer) May 13, 2022
The mm subsystem in the Linux kernel through 3.2 does not properly enforce the... High Unreviewed
CVE-2017-7889 was published May 13, 2022
An issue was discovered in Zoho ManageEngine Desktop Central before 10.0.282. A clickable company... High Unreviewed
CVE-2018-13411 was published May 13, 2022
An issue was discovered in the Self Service Portal in Zoho ManageEngine Desktop Central before 10... High Unreviewed
CVE-2018-13412 was published May 13, 2022
An issue was discovered on WAGO e!DISPLAY 762-3000 through 762-3003 devices with firmware before... Moderate Unreviewed
CVE-2018-12979 was published May 13, 2022
A Improper Access Control in Fortinet FortiOS 6.0.2, 5.6.7 and before, FortiADC 6.1.0, 6.0.0 to 6... High Unreviewed
CVE-2018-13374 was published May 13, 2022
GSTN_offline_tool in India Goods and Services Tax Network (GSTN) Offline Utility tool before 1.2... High Unreviewed
CVE-2017-13779 was published May 13, 2022
IBM Tivoli Workload Automation for AIX (IBM Workload Scheduler 8.6, 9.1, 9.2, 9.3, and 9.4)... High Unreviewed
CVE-2018-1386 was published May 13, 2022
Dell EMC iDRAC Service Module for all supported Linux and XenServer versions v3.0.1, v3.0.2, v3.1... Moderate Unreviewed
CVE-2018-11053 was published May 13, 2022
In Kaspersky Internet Security for Android 11.12.4.1622, some of application exports activities... Critical Unreviewed
CVE-2017-12816 was published May 13, 2022
The permissions on /proc/iomem were world-readable. This could lead to local information... Moderate Unreviewed
CVE-2019-2001 was published May 13, 2022
Razer Synapse 2.20.15.1104 and earlier uses weak permissions for the Devices directory, which... High Unreviewed
CVE-2017-11653 was published May 13, 2022
Razer Synapse 2.20.15.1104 and earlier uses weak permissions for the CrashReporter directory,... High Unreviewed
CVE-2017-11652 was published May 13, 2022
PCProtect Anti-Virus v4.8.35 has "Everyone: (F)" permission for %PROGRAMFILES(X86)%\PCProtect,... High Unreviewed
CVE-2018-17776 was published May 13, 2022
The Xamarin.iOS update component on systems running macOS allows an attacker to run arbitrary... High Unreviewed
CVE-2017-8665 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database