Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,992
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,053
Pub
12
RubyGems
955
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,989 advisories

Loading
Command injection vulnerability in EZ-Internet in Synology Router Manager (SRM) before 1.1.6-6931... High Unreviewed
CVE-2017-12078 was published May 13, 2022
Command injection vulnerability in EZ-Internet in Synology DiskStation Manager (DSM) before 6.2... High Unreviewed
CVE-2017-12075 was published May 13, 2022
A vulnerability in the debug interface of Cisco IP Phone 8800 series could allow an authenticated... High Unreviewed
CVE-2017-12305 was published May 13, 2022
A vulnerability in the CLI of Cisco Firepower Extensible Operating System (FXOS) and NX-OS System... Moderate Unreviewed
CVE-2017-12329 was published May 13, 2022
A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local... Moderate Unreviewed
CVE-2017-12330 was published May 13, 2022
A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local... High Unreviewed
CVE-2017-12341 was published May 13, 2022
A vulnerability in certain system script files that are installed at boot time on Cisco... High Unreviewed
CVE-2017-12352 was published May 13, 2022
A command injection vulnerability in the IDP feature of Juniper Networks Junos OS on SRX series... High Unreviewed
CVE-2017-2349 was published May 13, 2022
A Command Injection issue was discovered in Satel Iberia SenNet Data Logger and Electricity... High Unreviewed
CVE-2017-6048 was published May 13, 2022
A vulnerability in the Zero Touch Provisioning (ZTP) subsystem of the Cisco SD-WAN Solution could... High Unreviewed
CVE-2018-0347 was published May 13, 2022
A vulnerability in the VPN subsystem configuration in the Cisco SD-WAN Solution could allow an... High Unreviewed
CVE-2018-0350 was published May 13, 2022
A vulnerability in the vManage dashboard for the configuration and management service of the... High Unreviewed
CVE-2018-0344 was published May 13, 2022
A vulnerability in the command-line tcpdump utility in the Cisco SD-WAN Solution could allow an... High Unreviewed
CVE-2018-0351 was published May 13, 2022
A vulnerability in the web-based management interface of Cisco Integrated Management Controller ... High Unreviewed
CVE-2018-0430 was published May 13, 2022
A vulnerability in the web-based management interface of Cisco Integrated Management Controller ... High Unreviewed
CVE-2018-0431 was published May 13, 2022
A vulnerability in the web-based management interface of Cisco Cloud Services Platform 2100 could... High Unreviewed
CVE-2018-0454 was published May 13, 2022
It was found that ceph-isci-cli package as shipped by Red Hat Ceph Storage 2 and 3 is using... Critical Unreviewed
CVE-2018-14649 was published May 13, 2022
An attacker could inject commands to delete files and/or delete the contents of a file on CX... Moderate Unreviewed
CVE-2018-19013 was published May 13, 2022
The web-based diagnostics console in Dell EMC iDRAC6 (Monolithic versions prior to 2.91 and... High Unreviewed
CVE-2018-1212 was published May 13, 2022
Dell EMC iDRAC7/iDRAC8, versions prior to 2.60.60.60, and iDRAC9 versions prior to 3.21.21.21... High Unreviewed
CVE-2018-1244 was published May 13, 2022
The version control adapters component of TIBCO Data Virtualization (formerly known as Cisco... High Unreviewed
CVE-2018-5428 was published May 13, 2022
A Command Injection issue was discovered in Nortek Linear eMerge E3 series Versions V0.32-07e and... Critical Unreviewed
CVE-2018-5439 was published May 13, 2022
A vulnerability in lack of validation of user-supplied parameters pass to XML-RPC calls on... Critical Unreviewed
CVE-2018-9866 was published May 13, 2022
The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to... High Unreviewed
CVE-2019-3920 was published May 13, 2022
The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to... High Unreviewed
CVE-2019-3919 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database