Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+

5,055 advisories

Loading
In sample6 of SkSwizzler.cpp, there is a possible out of bounds write due to improper input... High Unreviewed
CVE-2019-1988 was published May 13, 2022
Microsoft Internet Explorer 6 does not properly handle objects in memory, which allows remote... High Unreviewed
CVE-2011-1997 was published May 13, 2022
Ansible Improper Input Validation vulnerability High
CVE-2018-10874 was published for ansible (pip) May 13, 2022
Ansible Arbitrary Code Execution High
CVE-2017-7466 was published for ansible (pip) May 13, 2022
OpensStack Neutron Denial of Service Vulnerability High
CVE-2018-14635 was published for neutron (pip) May 13, 2022
An assertion-failure flaw was found in Qemu before 2.10.1, in the Network Block Device (NBD)... High Unreviewed
CVE-2017-7539 was published May 13, 2022
The Agent Control Interface in the management server in Symantec Critical System Protection (SCSP... High Unreviewed
CVE-2014-3440 was published May 13, 2022
The vApp Managers web application in EMC Unisphere for VMAX Virtual Appliance 8.x before 8.3.0... High Unreviewed
CVE-2016-6645 was published May 13, 2022
An issue was discovered in Cloud Foundry Foundation cf-release versions prior to v263; UAA... High Unreviewed
CVE-2017-4994 was published May 13, 2022
The EMC RSA Identity Governance and Lifecycle, RSA Via Lifecycle and Governance and RSA IMG... High Unreviewed
CVE-2017-8004 was published May 13, 2022
H2O version 2.2.2 and earlier allows remote attackers to cause a denial of service in the server... High Unreviewed
CVE-2017-10868 was published May 13, 2022
Cisco Wireless LAN Controller (WLC) Software 7.4 before 7.4.130.0(MD) and 7.5, 7.6, and 8.0... High Unreviewed
CVE-2016-1364 was published May 13, 2022
iSmartAlarm cube devices allow Denial of Service. Sending a SYN flood on port 12345 will freeze... High Unreviewed
CVE-2017-7730 was published May 13, 2022
Microsoft Outlook 2007 SP3, Outlook 2010 SP2, Outlook 2013 SP1, Outlook 2013 RT SP1, and Outlook... High Unreviewed
CVE-2017-8571 was published May 13, 2022
Adobe Reader and Acrobat 10.x before 10.1.15 and 11.x before 11.0.12, Acrobat and Acrobat Reader... High Unreviewed
CVE-2015-5091 was published May 13, 2022
The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data... High Unreviewed
CVE-2016-2207 was published May 13, 2022
Insufficiently sanitized distributed objects in Updater in Google Chrome on macOS prior to 66.0... High Unreviewed
CVE-2018-6084 was published May 13, 2022
Insufficient restrictions on what can be done with Apple Events in Google Chrome on macOS prior... High Unreviewed
CVE-2019-5780 was published May 13, 2022
Cisco Prime Network Analysis Module (NAM) before 6.1(1) patch.6.1-2-final and 6.2.x before 6.2(2)... High Unreviewed
CVE-2016-1391 was published May 13, 2022
ccca_ajaxhandler.php in Trend Micro Smart Protection Server 2.5 before build 2200, 2.6 before... High Unreviewed
CVE-2016-6266 was published May 13, 2022
SnmpUtils in Trend Micro Smart Protection Server 2.5 before build 2200, 2.6 before build 2106,... High Unreviewed
CVE-2016-6267 was published May 13, 2022
svn-workbench 1.6.2 and earlier on a system with xeyes installed allows local users to execute... High Unreviewed
CVE-2015-0853 was published May 13, 2022
Palo Alto Networks Traps ESM Console before 3.4.4 allows attackers to cause a denial of service... High Unreviewed
CVE-2017-7408 was published May 13, 2022
The auth_password function in auth-passwd.c in sshd in OpenSSH before 7.3 does not limit password... High Unreviewed
CVE-2016-6515 was published May 13, 2022
Cisco IOS XE 3.2 through 3.4 before 3.4.5S, and 3.5 through 3.7 before 3.7.1S, on 1000 series... High Unreviewed
CVE-2013-1166 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database