Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,826 advisories

Loading
Inappropriate implementation in image-burner in Google Chrome OS prior to 59.0.3071.92 allowed a... Low Unreviewed
CVE-2017-5084 was published May 13, 2022
EMC Mainframe Enablers ResourcePak Base versions 7.6.0, 8.0.0, and 8.1.0 contains a fix for a... Critical Unreviewed
CVE-2017-4982 was published May 13, 2022
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB).... Moderate Unreviewed
CVE-2017-3257 was published May 13, 2022
Cybozu Garoon 3.0.0 to 4.2.3 allows remote authenticated attackers to bypass access restriction... Moderate Unreviewed
CVE-2017-2094 was published May 13, 2022
phpMyAdmin Improper Privilege Management Critical
CVE-2017-18264 was published for phpmyadmin/phpmyadmin (Composer) May 13, 2022
ISPConfig 3.x before 3.1.9 allows remote authenticated users to obtain root access by creating a... High Unreviewed
CVE-2017-17384 was published May 13, 2022
Inedo BuildMaster before 5.8.2 does not properly restrict creation of RequireManageAllPrivileges... High Unreviewed
CVE-2017-16520 was published May 13, 2022
In Paessler PRTG Network Monitor 17.3.33.2830, it's possible to create a Map as a read-only user,... Moderate Unreviewed
CVE-2017-15917 was published May 13, 2022
An issue was discovered in Cloudera Data Science Workbench (CDSW) 1.x before 1.2.0. Several web... High Unreviewed
CVE-2017-15536 was published May 13, 2022
TeamPass Improper Privilege Management High
CVE-2017-15055 was published for nilsteampassnet/teampass (Composer) May 13, 2022
TeamPass Improper Privilege Management Moderate
CVE-2017-15053 was published for nilsteampassnet/teampass (Composer) May 13, 2022
TeamPass Improper Privilege Management Moderate
CVE-2017-15052 was published for nilsteampassnet/teampass (Composer) May 13, 2022
OpenText Documentum Content Server (formerly EMC Documentum Content Server) through 7.3 contains... High Unreviewed
CVE-2017-15013 was published May 13, 2022
OpenText Documentum Content Server (formerly EMC Documentum Content Server) through 7.3 contains... Moderate Unreviewed
CVE-2017-15014 was published May 13, 2022
IBM UrbanCode Deploy (UCD) 6.1 and 6.2 could allow an authenticated user to edit objects that... Moderate Unreviewed
CVE-2017-1493 was published May 13, 2022
The Gentoo sci-mathematics/gimps package before 28.10-r1 for Great Internet Mersenne Prime Search... High Unreviewed
CVE-2017-14484 was published May 13, 2022
In EMC Isilon OneFS 8.1.0.0, 8.0.1.0 - 8.0.1.1, 8.0.0.0 - 8.0.0.4, 7.2.1.0 - 7.2.1.5, 7.2.0.x,... High Unreviewed
CVE-2017-14380 was published May 13, 2022
An authentication vulnerability in HPE SiteScope product versions 11.2x and 11.3x, allows read... Critical Unreviewed
CVE-2017-14349 was published May 13, 2022
Extreme EXOS 16.x, 21.x, and 22.x allows administrators to obtain a root shell via vectors... High Unreviewed
CVE-2017-14329 was published May 13, 2022
Extreme EXOS 16.x, 21.x, and 22.x allows administrators to obtain a root shell via vectors... High Unreviewed
CVE-2017-14330 was published May 13, 2022
Nagios Core through 4.3.4 initially executes /usr/sbin/nagios as root but supports configuration... High Unreviewed
CVE-2017-14312 was published May 13, 2022
A local privilege escalation and local code execution vulnerability in Fortinet FortiOS 5.6.0 to... High Unreviewed
CVE-2017-14187 was published May 13, 2022
In eLux RP 5.x before 5.5.1000 LTSR and 5.6.x before 5.6.2 CR when classic desktop mode is used,... Moderate Unreviewed
CVE-2017-14124 was published May 13, 2022
In X.Org Server (aka xserver and xorg-server) before 1.19.4, an attacker authenticated to an X... Moderate Unreviewed
CVE-2017-13721 was published May 13, 2022
IBM Sterling File Gateway does not properly restrict user requests based on permission level.... Moderate Unreviewed
CVE-2017-1326 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database