Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,873 advisories

Loading
Cloud Foundry Runtime cf-release before 216, UAA before 2.5.2, and Pivotal Cloud Foundry (PCF)... High Unreviewed
CVE-2015-5173 was published May 13, 2022
Incorrect Access Control in FailOverHelperServlet in Zoho ManageEngine Netflow Analyzer before... High Unreviewed
CVE-2018-12997 was published May 13, 2022
The RESTful control interface (aka RAPI or ganeti-rapi) in Ganeti before 2.9.7, 2.10.x before 2... High Unreviewed
CVE-2015-7945 was published May 13, 2022
Adobe ColdFusion Builder versions 2016 update 2 and earlier, 3.0.3 and earlier have an important... High Unreviewed
CVE-2016-7887 was published May 13, 2022
The Royal browser extensions TS before 4.3.60728 (Release Date 2018-07-28) and TSX before 3.3.1 ... High Unreviewed
CVE-2018-18865 was published May 13, 2022
The "Plug-in for VMware vCenter" in VCE Vision Intelligent Operations before 2.6.5 sends a... High Unreviewed
CVE-2015-4057 was published May 13, 2022
The NetApp ONTAP Select Deploy administration utility 2.0 through 2.2.1 might allow remote... High Unreviewed
CVE-2017-5995 was published May 13, 2022
Information disclosure in Netwave IP camera at get_status.cgi (via HTTP on port 8000) allows an... High Unreviewed
CVE-2018-11654 was published May 13, 2022
The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421733-160420a... High Unreviewed
CVE-2017-9492 was published May 13, 2022
The web component on ARRIS TG2492LG-NA 061213 devices allows remote attackers to obtain sensitive... High Unreviewed
CVE-2018-17555 was published May 13, 2022
The DES and Triple DES ciphers, as used in the TLS, SSH, and IPSec protocols and other protocols... High Unreviewed
CVE-2016-2183 was published May 13, 2022
Adobe Flash Player versions 26.0.0.131 and earlier have a security bypass vulnerability related... High Unreviewed
CVE-2017-3080 was published May 13, 2022
Adobe Flash Player versions 26.0.0.137 and earlier have a security bypass vulnerability that... High Unreviewed
CVE-2017-3085 was published May 13, 2022
Atlassian Confluence 6.x before 6.0.7 allows remote attackers to bypass authentication and read... High Unreviewed
CVE-2017-7415 was published May 13, 2022
A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V1.81.2... High Unreviewed
CVE-2017-12734 was published May 13, 2022
Versions of Puppet Enterprise prior to 2016.4.5 or 2017.2.1 failed to mark MCollective server... High Unreviewed
CVE-2017-2294 was published May 13, 2022
An issue was discovered in the Cloud Controller API in Cloud Foundry Foundation CAPI-release... High Unreviewed
CVE-2017-8035 was published May 13, 2022
Roundcube before 1.3.7 mishandles GnuPG MDC integrity-protection warnings, which makes it easier... High Unreviewed
CVE-2018-19205 was published May 13, 2022
An issue was discovered in these Pivotal RabbitMQ versions: all 3.4.x versions, all 3.5.x... High Unreviewed
CVE-2017-4966 was published May 13, 2022
Cisco NX-OS before 7.0(3)I2(2e) and 7.0(3)I4 before 7.0(3)I4(1) has an incorrect iptables local... High Unreviewed
CVE-2016-1455 was published May 13, 2022
An exploitable information disclosure vulnerability exists in the password protection... High Unreviewed
CVE-2018-3854 was published May 13, 2022
An exploitable code execution vulnerability exists in the firmware update functionality of Yi... High Unreviewed
CVE-2018-3928 was published May 13, 2022
An exploitable information disclosure vulnerability exists in the phone-to-camera communications... High Unreviewed
CVE-2018-3947 was published May 13, 2022
An exploitable file write vulnerability exists in the memory module functionality of Allen... High Unreviewed
CVE-2017-12092 was published May 13, 2022
An exploitable information disclosure vulnerability exists in the Server Agent functionality of... High Unreviewed
CVE-2017-12128 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database