Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,414 advisories

Loading
An error was found in the permission model used by X-Pack Alerting 5.0.0 to 5.6.0 whereby users... High Unreviewed
CVE-2017-8448 was published May 13, 2022
A vulnerability was discovered in Siemens SiPass integrated (All versions before V2.70) that... High Unreviewed
CVE-2017-9940 was published May 13, 2022
An Improper Privilege Management vulnerability in a shell session of Juniper Networks Junos OS... High Unreviewed
CVE-2018-0024 was published May 13, 2022
A vulnerability in the configuration and management service of the Cisco SD-WAN Solution could... High Unreviewed
CVE-2018-0343 was published May 13, 2022
A vulnerability in the account management subsystem of Cisco Web Security Appliance (WSA) could... High Unreviewed
CVE-2018-0428 was published May 13, 2022
A vulnerability in the Cisco Umbrella Enterprise Roaming Client (ERC) could allow an... High Unreviewed
CVE-2018-0437 was published May 13, 2022
A vulnerability in Cisco Webex Teams, formerly Cisco Spark, could allow an authenticated, remote... High Unreviewed
CVE-2018-0436 was published May 13, 2022
A vulnerability in the Cisco Umbrella Enterprise Roaming Client (ERC) could allow an... High Unreviewed
CVE-2018-0438 was published May 13, 2022
A vulnerability has been identified in ROX II (All versions < V2.12.1). An attacker with network... High Unreviewed
CVE-2018-13801 was published May 13, 2022
A vulnerability has been identified in ROX II (All versions < V2.12.1). An authenticated attacker... High Unreviewed
CVE-2018-13802 was published May 13, 2022
Emerson DeltaV DCS versions 11.3.1, 12.3.1, 13.3.0, 13.3.1, R5 may allow non-administrative users... High Unreviewed
CVE-2018-14791 was published May 13, 2022
Advantech WebAccess 8.3.1 and earlier has an improper privilege management vulnerability, which... High Unreviewed
CVE-2018-14828 was published May 13, 2022
Pivotal Operations Manager, versions 2.0.x prior to 2.0.24, versions 2.1.x prior to 2.1.15,... High Unreviewed
CVE-2018-15762 was published May 13, 2022
IBM Netezza Platform Software (IBM PureData System for Analytics 1.0.0) could allow a local user... High Unreviewed
CVE-2018-1460 was published May 13, 2022
IBM Campaign 9.1.0 and 9.1.2 could allow a local user to obtain admini privileges due to the... High Unreviewed
CVE-2018-1941 was published May 13, 2022
IBM API Connect 5.0.0.0 through 5.0.8.4 allows a user with limited 'API Administrator level... High Unreviewed
CVE-2018-1973 was published May 13, 2022
A vulnerability has been identified in RAPIDLab 1200 systems / RAPIDPoint 400 systems /... High Unreviewed
CVE-2018-4845 was published May 13, 2022
In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and prior,... High Unreviewed
CVE-2018-8841 was published May 13, 2022
Philips Brilliance CT devices operate user functions from within a contained kiosk in a Microsoft... High Unreviewed
CVE-2018-8853 was published May 13, 2022
Ubiquiti Networks EdgeOS version 1.9.1.1 and prior suffer from an Improper Privilege Management... High Unreviewed
CVE-2017-0935 was published May 13, 2022
Google Chrome before 15.0.874.120, when Java Runtime Environment (JRE) 7 is used, does not... High Unreviewed
CVE-2011-3898 was published May 13, 2022
The msm_ipc_router_bind_control_port function in net/ipc_router/ipc_router_core.c in the IPC... High Unreviewed
CVE-2016-2059 was published May 13, 2022
drivers/gpu/msm/kgsl.c in the MSM graphics driver (aka GPU driver) for the Linux kernel 3.x, as... High Unreviewed
CVE-2016-2067 was published May 13, 2022
Integer signedness error in the MSM V4L2 video driver for the Linux kernel 3.x, as used in... High Unreviewed
CVE-2016-2061 was published May 13, 2022
The Web Notification API in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5,... High Unreviewed
CVE-2014-1529 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database