Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,824 advisories

Loading
Emerson AMS Device Manager v12.0 to v13.5. Non-administrative users are able to change... Moderate Unreviewed
CVE-2018-14808 was published May 13, 2022
Advantech WebAccess 8.3.1 and earlier has an improper privilege management vulnerability, which... High Unreviewed
CVE-2018-14828 was published May 13, 2022
Pivotal Operations Manager, versions 2.0.x prior to 2.0.24, versions 2.1.x prior to 2.1.15,... High Unreviewed
CVE-2018-15762 was published May 13, 2022
IBM Netezza Platform Software (IBM PureData System for Analytics 1.0.0) could allow a local user... High Unreviewed
CVE-2018-1460 was published May 13, 2022
IBM FlashSystem V840 and V900 products could allow an authenticated attacker with specialized... Moderate Unreviewed
CVE-2018-1495 was published May 13, 2022
IBM Spectrum Protect 7.1 and 8.1 could allow a local user to corrupt or delete highly sensitive... Moderate Unreviewed
CVE-2018-1550 was published May 13, 2022
IBM Campaign 9.1.0 and 9.1.2 could allow a local user to obtain admini privileges due to the... High Unreviewed
CVE-2018-1941 was published May 13, 2022
IBM API Connect 5.0.0.0 through 5.0.8.4 allows a user with limited 'API Administrator level... High Unreviewed
CVE-2018-1973 was published May 13, 2022
A vulnerability has been identified in RAPIDLab 1200 systems / RAPIDPoint 400 systems /... High Unreviewed
CVE-2018-4845 was published May 13, 2022
A vulnerability has been identified in SIMATIC WinCC OA UI for Android (All versions < V3.15.10),... Moderate Unreviewed
CVE-2018-4844 was published May 13, 2022
In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and prior,... High Unreviewed
CVE-2018-8841 was published May 13, 2022
Philips Brilliance CT devices operate user functions from within a contained kiosk in a Microsoft... High Unreviewed
CVE-2018-8853 was published May 13, 2022
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2017.011.30113 and earlier version,... Critical Unreviewed
CVE-2018-19725 was published May 13, 2022
Mediawiki Improper Privilege Management Moderate
CVE-2018-0503 was published for mediawiki/core (Composer) May 13, 2022
Piwik (now Matomo) Vulnerable to Arbitrary Code Execution Moderate
CVE-2011-4941 was published for matomo/matomo (Composer) May 13, 2022
Ubiquiti Networks EdgeOS version 1.9.1.1 and prior suffer from an Improper Privilege Management... High Unreviewed
CVE-2017-0935 was published May 13, 2022
The PAN-OS management web interface page in PAN-OS 6.1.20 and earlier, PAN-OS 7.1.16 and earlier,... Moderate Unreviewed
CVE-2018-9334 was published May 13, 2022
The Palo Alto Networks Expedition Migration tool 1.0.107 and earlier may allow an unauthenticated... Critical Unreviewed
CVE-2018-10143 was published May 13, 2022
An unprivileged network attacker could gain system privileges to provisioned Intel manageability... Critical Unreviewed
CVE-2017-5689 was published May 13, 2022
main.c in Tinyproxy 1.8.4 and earlier creates a /run/tinyproxy/tinyproxy.pid file after dropping... Moderate Unreviewed
CVE-2017-11747 was published May 13, 2022
The WebUI privilege implementation in Google Chrome before 17.0.963.83 does not properly perform... Moderate Unreviewed
CVE-2011-3054 was published May 13, 2022
Google Chrome before 15.0.874.120, when Java Runtime Environment (JRE) 7 is used, does not... High Unreviewed
CVE-2011-3898 was published May 13, 2022
An issue was discovered in Personify360 e-Business 7.5.2 through 7.6.1. When going to the /TabId... Critical Unreviewed
CVE-2017-7312 was published May 13, 2022
The Crypto API in the Linux kernel before 3.18.5 allows local users to load arbitrary kernel... Low Unreviewed
CVE-2013-7421 was published May 13, 2022
The Crypto API in the Linux kernel before 3.18.5 allows local users to load arbitrary kernel... Low Unreviewed
CVE-2014-9644 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database