Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,826 advisories

Loading
Ubiquiti Networks EdgeOS version 1.9.1 and prior suffer from an Improper Privilege Management... High Unreviewed
CVE-2017-0934 was published May 13, 2022
An Improper Access Control issue was discovered in Trihedral VTScada 11.3.03 and prior. A local,... High Unreviewed
CVE-2017-14031 was published May 13, 2022
katello Improper Privilege Management vulnerability Moderate
CVE-2017-2662 was published for katello (RubyGems) May 13, 2022
A flaw was found in foreman before version 1.15 in the logging of adding and registering images.... High Unreviewed
CVE-2017-2672 was published May 13, 2022
In version 3.5 and prior of Cambium Networks ePMP firmware, the non-administrative users ... High Unreviewed
CVE-2017-5254 was published May 13, 2022
A vulnerability in a script file that is installed as part of the Cisco Policy Suite (CPS)... High Unreviewed
CVE-2017-6623 was published May 13, 2022
Drupal REST API can bypass comment approval High
CVE-2017-6924 was published for drupal/core (Composer) May 13, 2022
Foreman since version 1.5 is vulnerable to an incorrect authorization check due to which users... High Unreviewed
CVE-2017-7505 was published May 13, 2022
An Improper Privilege Management issue was discovered in Cambium Networks ePMP. The privileges... High Unreviewed
CVE-2017-7922 was published May 13, 2022
A Permissions, Privileges, and Access Controls issue was discovered in ABB VSN300 WiFi Logger... Moderate Unreviewed
CVE-2017-7916 was published May 13, 2022
An Improper Access Control issue was discovered in Cambium Networks ePMP. After a valid user has... Moderate Unreviewed
CVE-2017-7918 was published May 13, 2022
Elastic X-Pack Security versions 5.0.0 to 5.4.0 contain a privilege escalation bug in the run_as... High Unreviewed
CVE-2017-8438 was published May 13, 2022
An error was found in the permission model used by X-Pack Alerting 5.0.0 to 5.6.0 whereby users... High Unreviewed
CVE-2017-8448 was published May 13, 2022
An error was found in the X-Pack Security 5.3.0 to 5.5.2 privilege enforcement. If a user has... Moderate Unreviewed
CVE-2017-8447 was published May 13, 2022
Improper Privilege Management in X-Pack Moderate
CVE-2017-8446 was published for org.elasticsearch.plugin:x-pack (Maven) May 13, 2022
A vulnerability has been identified in Siemens 7KT PAC1200 data manager (7KT1260) in all versions... Critical Unreviewed
CVE-2017-9944 was published May 13, 2022
A vulnerability was discovered in Siemens SiPass integrated (All versions before V2.70) that... High Unreviewed
CVE-2017-9940 was published May 13, 2022
An Improper Privilege Management vulnerability in a shell session of Juniper Networks Junos OS... High Unreviewed
CVE-2018-0024 was published May 13, 2022
A vulnerability in the configuration and management service of the Cisco SD-WAN Solution could... High Unreviewed
CVE-2018-0343 was published May 13, 2022
A vulnerability in the account management subsystem of Cisco Web Security Appliance (WSA) could... High Unreviewed
CVE-2018-0428 was published May 13, 2022
A vulnerability in the web-based management interface of the Cisco RV110W Wireless-N VPN Firewall... Critical Unreviewed
CVE-2018-0425 was published May 13, 2022
A vulnerability in Cisco Webex Teams, formerly Cisco Spark, could allow an authenticated, remote... High Unreviewed
CVE-2018-0436 was published May 13, 2022
A vulnerability in the Cisco Umbrella Enterprise Roaming Client (ERC) could allow an... High Unreviewed
CVE-2018-0437 was published May 13, 2022
A vulnerability in the Cisco Umbrella Enterprise Roaming Client (ERC) could allow an... High Unreviewed
CVE-2018-0438 was published May 13, 2022
A vulnerability has been identified in ROX II (All versions < V2.12.1). An authenticated attacker... High Unreviewed
CVE-2018-13802 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database