Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,278 advisories

Loading
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2017-10951 was published May 13, 2022
** DISPUTED ** This vulnerability allows remote attackers to execute arbitrary code on vulnerable... High Unreviewed
CVE-2017-10955 was published May 13, 2022
A vulnerability in the Cisco Unified Computing System (UCS) Manager, Cisco Firepower 4100 Series... High Unreviewed
CVE-2017-12243 was published May 13, 2022
A vulnerability in the debug interface of Cisco IP Phone 8800 series could allow an authenticated... High Unreviewed
CVE-2017-12305 was published May 13, 2022
An Improper Neutralization of Special Elements used in an OS Command issue was discovered in... High Unreviewed
CVE-2017-14001 was published May 13, 2022
In version 3.5 and prior of Cambium Networks ePMP firmware, a lack of input sanitation for... High Unreviewed
CVE-2017-5255 was published May 13, 2022
A vulnerability in the USB-modem code of Cisco IOS XE Software running on Cisco ASR 920 Series... High Unreviewed
CVE-2017-6796 was published May 13, 2022
A shell command injection in the obs-service-source_validator before 0.7 could be used to execute... High Unreviewed
CVE-2017-9274 was published May 13, 2022
A vulnerability in the web management GUI of the Cisco D9800 Network Transport Receiver could... High Unreviewed
CVE-2018-0099 was published May 13, 2022
A vulnerability in the CLI of the Cisco StarOS operating system for Cisco ASR 5000 Series routers... High Unreviewed
CVE-2018-0115 was published May 13, 2022
Multiple vulnerabilities in the CLI parser of Cisco IOS XE Software could allow an authenticated,... High Unreviewed
CVE-2018-0176 was published May 13, 2022
A vulnerability in the CLI parser of Cisco IOS XE Software could allow an authenticated, local... High Unreviewed
CVE-2018-0184 was published May 13, 2022
Multiple vulnerabilities in the CLI parser of Cisco IOS XE Software could allow an authenticated,... High Unreviewed
CVE-2018-0185 was published May 13, 2022
A vulnerability in the CLI parser of Cisco IOS XE Software could allow an authenticated, local... High Unreviewed
CVE-2018-0183 was published May 13, 2022
Multiple vulnerabilities in the CLI parser of Cisco IOS XE Software could allow an authenticated,... High Unreviewed
CVE-2018-0182 was published May 13, 2022
Multiple vulnerabilities in the CLI parser of Cisco IOS XE Software could allow an authenticated,... High Unreviewed
CVE-2018-0169 was published May 13, 2022
Multiple vulnerabilities in the CLI parser of Cisco IOS XE Software could allow an authenticated,... High Unreviewed
CVE-2018-0194 was published May 13, 2022
Multiple vulnerabilities in the CLI parser of Cisco IOS XE Software could allow an authenticated,... High Unreviewed
CVE-2018-0193 was published May 13, 2022
A vulnerability in specific CLI commands for the Cisco Identity Services Engine (ISE) could allow... High Unreviewed
CVE-2018-0221 was published May 13, 2022
A vulnerability in role-based access control (RBAC) for Cisco NX-OS Software could allow an... High Unreviewed
CVE-2018-0293 was published May 13, 2022
A vulnerability in the NX-API management application programming interface (API) in devices... High Unreviewed
CVE-2018-0330 was published May 13, 2022
A vulnerability in the web-based UI of Cisco IP Phone 6800, 7800, and 8800 Series with... High Unreviewed
CVE-2018-0341 was published May 13, 2022
A vulnerability in the error reporting feature of the Cisco SD-WAN Solution could allow an... High Unreviewed
CVE-2018-0432 was published May 13, 2022
A vulnerability in the Sourcefire tunnel control channel protocol in Cisco Firepower System... High Unreviewed
CVE-2018-0453 was published May 13, 2022
CloudForms Management Engine (cfme) is vulnerable to an improper security setting in the dRuby... High Unreviewed
CVE-2018-10905 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database