GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,638
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,645
Maven 6,108
npm 4,271
NuGet 760
pip 4,065
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,148

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,388 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An issue was discovered in Roche Accu-Chek Inform II Base Unit / Base Unit Hub before 03.01.04... High Unreviewed

CVE-2018-18561 was published May 13, 2022

WebExtension content scripts can be loaded into about: pages in some circumstances, in violation... Moderate Unreviewed

CVE-2018-18495 was published May 13, 2022

The Spotfire Library component of TIBCO Software Inc.'s TIBCO Spotfire Analytics Platform for AWS... Moderate Unreviewed

CVE-2018-18812 was published May 13, 2022

Eclipse Mosquitto 1.5.x before 1.5.5 allows ACL bypass: if the option per_listener_settings was... High Unreviewed

CVE-2018-20145 was published May 13, 2022

The expiretable configuration in pfSense 2.4.4_1 establishes block durations that are... High Unreviewed

CVE-2018-20798 was published May 13, 2022

A permissions issue existed in which execute permission was incorrectly granted. This issue was... Moderate Unreviewed

CVE-2018-4178 was published May 13, 2022

A vulnerability allows local attackers to escalate privilege on Rapid Scada 5.5.0 because of weak... High Unreviewed

CVE-2018-5313 was published May 13, 2022

NVIDIA GeForce Experience prior to 3.15 contains a vulnerability when GameStream is enabled which... High Unreviewed

CVE-2018-6261 was published May 13, 2022

An elevation of privilege vulnerability exists when NTFS improperly checks access, aka "NTFS... High Unreviewed

CVE-2018-8411 was published May 13, 2022

Improper file permissions for Intel(R) Data Center Manager SDK before version 5.0.2 may allow an... Moderate Unreviewed

CVE-2019-0111 was published May 13, 2022

Improper file permissions for Intel(R) Data Center Manager SDK before version 5.0.2 may allow an... Moderate Unreviewed

CVE-2019-0108 was published May 13, 2022

An information disclosure vulnerability exists when the Microsoft Exchange PowerShell API grants... Moderate Unreviewed

CVE-2019-0588 was published May 13, 2022

An information disclosure vulnerability exists in the way Azure WaLinuxAgent creates swap files... Moderate Unreviewed

CVE-2019-0804 was published May 13, 2022

IBM Tivoli Storage Manager (IBM Spectrum Protect 8.1.7) could allow a user to restore files and... Moderate Unreviewed

CVE-2019-4093 was published May 13, 2022

An issue was discovered in the Bosch Smart Camera App before 1.3.1 for Android. Due to setting of... Low Unreviewed

CVE-2019-7729 was published May 13, 2022

Privilege escalation in Nagios XI before 5.5.11 allows local attackers to elevate privileges to... High Unreviewed

CVE-2019-9166 was published May 13, 2022

Mercurial Incorrect Access Control vulnerability Critical

CVE-2018-1000132 was published for mercurial (pip) May 13, 2022

Icinga Core through 1.14.0 initially executes bin/icinga as root but supports configuration... High Unreviewed

CVE-2017-16882 was published May 13, 2022

The (1) arq_updater, (2) arqcommitter, (3) standardrestorer, (4) arqglacierrestorer, and (5)... High Unreviewed

CVE-2017-16895 was published May 13, 2022

** DISPUTED ** PrivateVPN 2.0.31 for macOS suffers from a root privilege escalation vulnerability... High Unreviewed

CVE-2018-7311 was published May 13, 2022

onefilecms.php in OneFileCMS through 2017-10-08 might allow attackers to delete arbitrary files... Moderate Unreviewed

CVE-2018-13122 was published May 13, 2022

KBVault Mysql Free Knowledge Base application package 0.16a comes with a FileExplorer/Explorer... Critical Unreviewed

CVE-2017-9602 was published May 13, 2022

The web interface in McAfee Email Gateway (formerly IronMail) 6.7.1 allows remote authenticated... Moderate Unreviewed

CVE-2010-2116 was published May 13, 2022

** DISPUTED ** OpenWrt mishandles access control in /etc/config/rpcd and the /usr/share/rpcd/acl... High Unreviewed

CVE-2018-11116 was published May 13, 2022

Weak Directory Permission Vulnerability in Microsoft Windows client in McAfee True Key (TK) 5.1... High Unreviewed

CVE-2018-6755 was published May 13, 2022

Previous 1…9…56 Next

Previous 1 2 … 7 8 9 10 11 … 55 56 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,388 advisories