Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,874
Erlang
37
GitHub Actions
36
Go
2,520
Maven
5,000+
npm
4,160
NuGet
741
pip
3,961
Pub
12
RubyGems
946
Rust
1,028
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,336 advisories

Loading
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware... High Unreviewed
CVE-2017-14427 was published May 13, 2022
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware... High Unreviewed
CVE-2017-14425 was published May 13, 2022
MitraStar GPT-2541GNAC (HGU) 1.00(VNJ0)b1 and DSL-100HN-T1 ES_113WJY0b16 devices allow remote... High Unreviewed
CVE-2017-16522 was published May 13, 2022
An issue was discovered in Pivotal PCF Tile Generator versions prior to 6.0.0. Tiles created by... High Unreviewed
CVE-2017-4975 was published May 13, 2022
During installation of Ambari 2.4.0 through 2.4.2, Ambari Server artifacts are not created with... Critical Unreviewed
CVE-2017-5642 was published May 13, 2022
With OxygenOS before 4.0.3, when a charger is connected to a powered-off OnePlus 3 or 3T device,... Moderate Unreviewed
CVE-2017-5622 was published May 13, 2022
The BIOS in Intel NUC systems based on 6th Gen Intel Core processors prior to version SY0059 may... Low Unreviewed
CVE-2017-5686 was published May 13, 2022
The BIOS in Intel NUC systems based on 6th Gen Intel Core processors prior to version KY0045 may... Low Unreviewed
CVE-2017-5685 was published May 13, 2022
The BIOS in Intel Compute Stick systems based on 6th Gen Intel Core processors prior to version... Low Unreviewed
CVE-2017-5684 was published May 13, 2022
An issue was discovered in Veritas NetBackup Before 7.7 and NetBackup Appliance Before 2.7. There... Moderate Unreviewed
CVE-2017-6404 was published May 13, 2022
The Mozilla Maintenance Service "helper.exe" application creates a temporary directory writable... Moderate Unreviewed
CVE-2017-7761 was published May 13, 2022
On Linux systems, if the content process is compromised, the sandbox broker will allow files to... High Unreviewed
CVE-2017-7794 was published May 13, 2022
Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an... High Unreviewed
CVE-2017-8625 was published May 13, 2022
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the... High Unreviewed
CVE-2018-11906 was published May 13, 2022
Default install directory permissions in Intel Distribution for Python (IDP) version 2018 may... High Unreviewed
CVE-2018-12175 was published May 13, 2022
An issue was discovered in TotalAV v4.1.7. An unprivileged user could modify or overwrite all of... High Unreviewed
CVE-2018-7535 was published May 13, 2022
A write protection lock bit was left unset after boot on an older generation of Lenovo and IBM... Moderate Unreviewed
CVE-2018-9085 was published May 13, 2022
Air Cargo Management System v1.0 is vulnerable to file deletion via /acms/classes/Master.php?f... Moderate Unreviewed
CVE-2022-30367 was published May 14, 2022
Sourcecodester Simple Social Networking Site v1.0 is vulnerable to file deletion via /sns/classes... Moderate Unreviewed
CVE-2022-30375 was published May 14, 2022
fal_sftp extension for TYPO3 uses weak permissions for sFTP driver files and folders Moderate
CVE-2014-8327 was published for co-stack/fal_sftp (Composer) May 17, 2022
administrator.cfc in Adobe ColdFusion 9.0, 9.0.1, 9.0.2, and 10 allows remote attackers to bypass... High Unreviewed
CVE-2013-0632 was published May 17, 2022
plymouth-pretrigger.sh in dracut and udev, when running on Fedora 13 and 14, sets weak... Moderate Unreviewed
CVE-2010-4176 was published May 17, 2022
SGI Tempo, as used on SGI ICE-X systems, uses weak permissions for certain files, which allows... High Unreviewed
CVE-2014-7302 was published May 17, 2022
SGI Tempo, as used on SGI ICE-X systems, uses weak permissions for certain files, which allows... Moderate Unreviewed
CVE-2014-7301 was published May 17, 2022
SGI Tempo, as used on SGI ICE-X systems, uses weak permissions for certain files, which allows... High Unreviewed
CVE-2014-7303 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database