Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

5,055 advisories

Loading
An elevation of privilege vulnerability in the recovery verifier could enable a local malicious... High Unreviewed
CVE-2017-0475 was published May 13, 2022
An elevation of privilege vulnerability in the Qualcomm camera driver could enable a local... High Unreviewed
CVE-2017-0458 was published May 13, 2022
Windows Hyper-V allows an elevation of privilege vulnerability when Microsoft Windows 10 Gold,... High Unreviewed
CVE-2017-0212 was published May 13, 2022
Hyper-V in Microsoft Windows 10 Gold, 1511, and 1607 and Windows Server 2016 does not properly... High Unreviewed
CVE-2017-0095 was published May 13, 2022
tftpserver.exe in HP Intelligent Management Center (IMC) 5.0 before E0101L02 allows remote... High Unreviewed
CVE-2011-1853 was published May 13, 2022
tftpserver.exe in HP Intelligent Management Center (IMC) 5.0 before E0101L02 allows remote... High Unreviewed
CVE-2011-1849 was published May 13, 2022
The HP ProLiant SL Advanced Power Manager (SL-APM) with firmware before 1.20 does not properly... High Unreviewed
CVE-2011-2405 was published May 13, 2022
A vulnerability in open build service allows remote attackers to gain access to source files even... High Unreviewed
CVE-2011-4181 was published May 13, 2022
Missing escaping of ESSID values in sysconfig of SUSE Linux Enterprise allows attackers... High Unreviewed
CVE-2011-4182 was published May 13, 2022
illumos osnet-incorporation bcopy() and bzero() implementations make signed instead of unsigned... High Unreviewed
CVE-2016-6560 was published May 13, 2022
The Imagely NextGen Gallery plugin for Wordpress prior to version 2.1.57 does not properly... High Unreviewed
CVE-2016-6565 was published May 13, 2022
An issue has been found in dnsdist before 1.2.0 in the way EDNS0 OPT records are handled when... High Unreviewed
CVE-2016-7069 was published May 13, 2022
The OpenShift Enterprise 3 router does not properly sort routes when processing newly added... High Unreviewed
CVE-2016-8631 was published May 13, 2022
A vulnerability was discovered in SPICE before 0.13.90 in the server's protocol handling. An... High Unreviewed
CVE-2016-9578 was published May 13, 2022
A flaw was found in the way Ceph Object Gateway would process cross-origin HTTP requests if the... High Unreviewed
CVE-2016-9579 was published May 13, 2022
RubyGems may allow a maliciously crafted gem to overwrite files High
CVE-2017-0901 was published for rubygems-update (RubyGems) May 13, 2022
Koji blacklisted paths workaround High
CVE-2017-1002153 was published for koji (pip) May 13, 2022
On all vSRX and SRX Series devices, when the DHCP or DHCP relay is configured, specially crafted... High Unreviewed
CVE-2017-10605 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2017-10953 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2017-10952 was published May 13, 2022
** DISPUTED ** This vulnerability allows remote attackers to execute arbitrary code on vulnerable... High Unreviewed
CVE-2017-10955 was published May 13, 2022
A flaw was found in Ansible Tower's interface before 3.1.5 and 3.2.0 with SCM repositories. If a... High Unreviewed
CVE-2017-12148 was published May 13, 2022
A vulnerability in the Operations, Administration, Maintenance, and Provisioning (OAMP)... High Unreviewed
CVE-2017-12214 was published May 13, 2022
A vulnerability in the email message filtering feature of Cisco AsyncOS Software for the Cisco... High Unreviewed
CVE-2017-12215 was published May 13, 2022
A vulnerability in the web-based Wireless Controller GUI of Cisco IOS XE Software for Cisco 5760... High Unreviewed
CVE-2017-12226 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database