Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,064 advisories

Loading
The do_ip_vs_get_ctl function in net/netfilter/ipvs/ip_vs_ctl.c in the Linux kernel before 3.6... Low Unreviewed
CVE-2012-6540 was published May 17, 2022
The dev_ifconf function in net/socket.c in the Linux kernel before 3.6 does not initialize a... Low Unreviewed
CVE-2012-6539 was published May 17, 2022
The load_script function in fs/binfmt_script.c in the Linux kernel before 3.7.2 does not properly... Low Unreviewed
CVE-2012-4530 was published May 17, 2022
The Private Browsing feature in CFNetwork in Apple Mac OS X before 10.8.4 does not prevent... Low Unreviewed
CVE-2013-0982 was published May 17, 2022
Apple Mac OS X before 10.7.5 and 10.8.x before 10.8.2 allows local users to read passwords... Low Unreviewed
CVE-2012-3718 was published May 17, 2022
The firewall module on the Huawei Quidway Service Process Unit (SPU) board S7700, S9300, and... Low Unreviewed
CVE-2013-4628 was published May 17, 2022
The management console (aka Java console) on the Symantec Security Information Manager (SSIM)... Low Unreviewed
CVE-2013-1615 was published May 17, 2022
The NDMP protocol implementation in Symantec Backup Exec 2010 R3 before 2010 R3 SP3 and 2012... Low Unreviewed
CVE-2013-4678 was published May 17, 2022
The __tun_chr_ioctl function in drivers/net/tun.c in the Linux kernel before 3.6 does not... Low Unreviewed
CVE-2012-6547 was published May 17, 2022
The isofs_export_encode_fh function in fs/isofs/export.c in the Linux kernel before 3.6 does not... Low Unreviewed
CVE-2012-6549 was published May 17, 2022
Microsoft Internet Explorer before 10 allows remote attackers to obtain sensitive information... Low Unreviewed
CVE-2012-6502 was published May 17, 2022
mdmclient in Mobile Device Management in Apple Mac OS X before 10.8.5 places a password on the... Low Unreviewed
CVE-2013-1030 was published May 17, 2022
The WebGL implementation in Mozilla Firefox before 24.0, when NVIDIA graphics drivers are used on... Low Unreviewed
CVE-2013-1729 was published May 17, 2022
Cybozu Mailwise 5.0.4 and 5.0.5 allows remote authenticated users to obtain sensitive e-mail... Low Unreviewed
CVE-2013-4698 was published May 17, 2022
Symantec Messaging Gateway (SMG) before 10.0 allows remote attackers to obtain potentially... Low Unreviewed
CVE-2012-3581 was published May 17, 2022
Mail in Apple Mac OS X before 10.9, when Kerberos authentication is enabled and TLS is disabled,... Low Unreviewed
CVE-2013-5183 was published May 17, 2022
Amberdms Billing System (ABS) before 1.4.1, when a multi-instance installation is configured,... Low Unreviewed
CVE-2010-5292 was published May 17, 2022
ssh-keysign.c in ssh-keysign in OpenSSH before 5.8p2 on certain platforms executes ssh-rand... Low Unreviewed
CVE-2011-4327 was published May 17, 2022
FaceTime in Apple iOS before 7.1 allows physically proximate attackers to obtain sensitive... Low Unreviewed
CVE-2014-1274 was published May 17, 2022
The LiveConnect implementation in plugin/icedteanp/IcedTeaNPPlugin.cc in IcedTea-Web before 1.4.2... Low Unreviewed
CVE-2013-6493 was published May 17, 2022
Mozilla Firefox before 28.0.1 on Android processes a file: URL by copying a local file onto the... Low Unreviewed
CVE-2014-1515 was published May 17, 2022
OpenStack Keystone Sensitive information disclosure via log files Low
CVE-2013-2006 was published for keystone (pip) May 17, 2022
Amtelco miSecureMessages (aka MSM) 6.2 does not properly manage sessions, which allows remote... Low Unreviewed
CVE-2014-2347 was published May 17, 2022
The NTT 050 plus application before 4.2.1 for Android allows attackers to obtain sensitive... Low Unreviewed
CVE-2014-2000 was published May 17, 2022
OpenStack Nova host data leak to vm instance in rescue mode Low
CVE-2014-0134 was published for nova (pip) May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database