Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,874 advisories

Loading
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile,... High Unreviewed
CVE-2015-9163 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile,... High Unreviewed
CVE-2015-9123 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and... High Unreviewed
CVE-2015-9169 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 400... High Unreviewed
CVE-2014-10047 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and... High Unreviewed
CVE-2014-10062 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 400... High Unreviewed
CVE-2014-10055 was published May 14, 2022
WildFly has incomplete blacklist vulnerability High
CVE-2016-0793 was published for org.wildfly:wildfly-parent (Maven) May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and... High Unreviewed
CVE-2015-9119 was published May 14, 2022
Etherpad 1.5.x and 1.6.x before 1.6.4 allows an attacker to export all the existing pads of an... High Unreviewed
CVE-2018-9325 was published May 14, 2022
In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Mobile and Snapdragon... High Unreviewed
CVE-2017-18072 was published May 14, 2022
Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains an information disclosure flaw, where the api... High Unreviewed
CVE-2017-0361 was published May 14, 2022
IBM Security SiteProtector System 3.0, 3.1.0 and 3.1.1 allows remote attackers to bypass intended... High Unreviewed
CVE-2015-0172 was published May 14, 2022
In check_user_token in util.c in the Yubico PAM module (aka pam_yubico) 2.18 through 2.25,... High Unreviewed
CVE-2018-9275 was published May 14, 2022
Lenovo Help Android mobile app versions earlier than 6.1.2.0327 allowed information to be... High Unreviewed
CVE-2017-3776 was published May 14, 2022
Pivotal Gemfire for PCF, versions 1.6.x prior to 1.6.5.0 and 1.7.x prior to 1.7.1.0, contain an... High Unreviewed
CVE-2016-8220 was published May 14, 2022
In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p9, 10.4-STABLE, 10.4-RELEASE-p8 and 10.3-RELEASE-p28... High Unreviewed
CVE-2018-6919 was published May 14, 2022
Lutron Quantum BACnet Integration 2.0 (firmware 3.2.243) doesn't check for correct user... High Unreviewed
CVE-2018-8880 was published May 14, 2022
The kernel in Apple iOS before 9.3.5 allows attackers to obtain sensitive information from memory... High Unreviewed
CVE-2016-4655 was published May 14, 2022
In ImageMagick before 6.9.7-6 and 7.x before 7.0.4-6, the ReadMATImage function in coders/mat.c... High Unreviewed
CVE-2017-13143 was published May 14, 2022
Adobe Digital Editions versions 4.5.7 and below have an exploitable Out-of-bounds read... High Unreviewed
CVE-2018-4925 was published May 14, 2022
There is a Sensitive Data Leakage issue in Citrix XenMobile Server 10.7 before RP3. High Unreviewed
CVE-2018-10652 was published May 14, 2022
If an HTTP authentication prompt is triggered by a background network request from a page or... High Unreviewed
CVE-2018-5115 was published May 14, 2022
IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.1.2 and 7.2.0 through 7.2.1.4 might... High Unreviewed
CVE-2013-3023 was published May 14, 2022
The Werewolf Online application 0.8.8 for Android allows attackers to discover the Firebase token... High Unreviewed
CVE-2018-11505 was published May 14, 2022
An issue was discovered in certain Apple products. macOS before 10.13.5 is affected. The issue... High Unreviewed
CVE-2018-4171 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database