GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,816

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,304 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Sonatype Nexus Repository Manager before 3.14 has Incorrect Access Control. High Unreviewed

CVE-2018-16620 was published May 13, 2022

During HTTP Live Stream playback on Firefox for Android, audio data can be accessed across... High Unreviewed

CVE-2018-12391 was published May 13, 2022

Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016... Moderate Unreviewed

CVE-2018-0803 was published May 13, 2022

Warsaw Huawei Smart phones with software of versions earlier than Warsaw-AL00C00B180, versions... High Unreviewed

CVE-2017-8216 was published May 13, 2022

GNU screen before 4.5.1 allows local users to modify arbitrary files and consequently gain root... High Unreviewed

CVE-2017-5618 was published May 13, 2022

A vulnerability in the role-based access-checking mechanisms of Cisco NX-OS Software could allow... High Unreviewed

CVE-2018-0337 was published May 13, 2022

A vulnerability in the web interface for specific feature sets of Cisco Integrated Management... Moderate Unreviewed

CVE-2018-15405 was published May 13, 2022

A vulnerability in the role-based access-checking mechanisms of Cisco Unified Computing System ... High Unreviewed

CVE-2018-0338 was published May 13, 2022

A vulnerability in the management console of Cisco Firepower System Software could allow an... Moderate Unreviewed

CVE-2018-0278 was published May 13, 2022

A vulnerability in the web framework of the Cisco Digital Network Architecture Center (DNA Center... Moderate Unreviewed

CVE-2018-0269 was published May 13, 2022

On a Samba 4 AD DC the LDAP server in all versions of Samba from 4.0.0 onwards incorrectly... High Unreviewed

CVE-2018-1057 was published May 13, 2022

QEMU does not properly restrict write access to the PCI config space for certain PCI pass-through... Moderate Unreviewed

CVE-2015-4106 was published May 13, 2022

Improper access control in the Helpdesk App of Odoo Enterprise 10.0 through 12.0 allows remote... High Unreviewed

CVE-2018-15640 was published May 13, 2022

A vulnerability in the user account management interface of Cisco NX-OS Software could allow an... High Unreviewed

CVE-2019-1604 was published May 13, 2022

A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker... High Unreviewed

CVE-2019-1603 was published May 13, 2022

An incorrect permission check in the admin backend in gvfs before version 1.39.4 was found that... High Unreviewed

CVE-2019-3827 was published May 13, 2022

To provide fine-grained controls over the ability to use Dynamic DNS (DDNS) to update records in... Moderate Unreviewed

CVE-2018-5741 was published May 13, 2022

Improper authorization vulnerability in SYNO.Cal.Event in Calendar before 2.1.2-0511 allows... Moderate Unreviewed

CVE-2018-8927 was published May 13, 2022

mod_lua.c in the mod_lua module in the Apache HTTP Server 2.3.x and 2.4.x through 2.4.10 does not... Moderate Unreviewed

CVE-2014-8109 was published May 13, 2022

A flaw was discovered in gfs2 file system’s handling of acls (access control lists). An... High Unreviewed

CVE-2010-2525 was published May 13, 2022

Moxa PT-7728 devices with software 3.4 build 15081113 allow remote authenticated users to change... High Unreviewed

CVE-2016-4514 was published May 13, 2022

A vulnerability in the Graphite interface of Cisco HyperFlex software could allow an... Low Unreviewed

CVE-2019-1667 was published May 13, 2022

A flaw was found in the way KVM hypervisor handled x2APIC Machine Specific Rregister (MSR) access... Moderate Unreviewed

CVE-2019-3887 was published May 13, 2022

In systemd before v242-rc4, it was discovered that pam_systemd does not properly sanitize the... High Unreviewed

CVE-2019-3842 was published May 13, 2022

The integrated HTTPS server in Siemens RuggedCom ROS before 3.12.2 allows remote authenticated... High Unreviewed

CVE-2013-6926 was published May 13, 2022

Previous 1…81…93 Next

Previous 1 2 … 79 80 81 82 83 … 92 93 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,304 advisories