Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,388 advisories

Loading
An issue was discovered in Icinga 2.x through 2.8.1. The daemon creates an icinga2.pid file after... Moderate Unreviewed
CVE-2018-6536 was published May 13, 2022
An issue was discovered in MalwareFox AntiMalware 2.74.0.150. Improper access control in zam32... High Unreviewed
CVE-2018-6593 was published May 13, 2022
An issue was discovered in Hola 1.79.859. An unprivileged user could modify or overwrite the... High Unreviewed
CVE-2018-6623 was published May 13, 2022
An issue was discovered in MalwareFox AntiMalware 2.74.0.150. Improper access control in zam32... High Unreviewed
CVE-2018-6606 was published May 13, 2022
vRealize Operations (7.x before 7.0.0.11287810, 6.7.x before 6.7.0.11286837 and 6.6.x before 6.6... High Unreviewed
CVE-2018-6978 was published May 13, 2022
An issue was discovered in shadow 4.5. newgidmap (in shadow-utils) is setuid and allows an... Moderate Unreviewed
CVE-2018-7169 was published May 13, 2022
Incorrect Permission Assignment for Critical Resource in NPM High
CVE-2018-7408 was published for npm (npm) May 13, 2022
\ProgramData\WebLog Expert\WebServer\WebServer.cfg in WebLog Expert Web Server Enterprise 9.4 has... High Unreviewed
CVE-2018-7581 was published May 13, 2022
Anne-AL00 Huawei phones with versions earlier than 8.0.0.151(C00) have an information leak... Low Unreviewed
CVE-2018-7924 was published May 13, 2022
The AMD Ryzen, Ryzen Pro, and Ryzen Mobile processor chips have insufficient access control for... Critical Unreviewed
CVE-2018-8931 was published May 13, 2022
The AMD Ryzen and Ryzen Pro processor chips have insufficient access control for the Secure... Critical Unreviewed
CVE-2018-8932 was published May 13, 2022
The AMD EPYC Server processor chips have insufficient access control for protected memory regions... Critical Unreviewed
CVE-2018-8933 was published May 13, 2022
In SonicWall SonicOS, administrators without full permissions can download imported certificates.... Moderate Unreviewed
CVE-2018-9867 was published May 13, 2022
Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, does... High Unreviewed
CVE-2013-0885 was published May 14, 2022
The developer-tools process in Google Chrome before 25.0.1364.97 on Windows and Linux, and before... High Unreviewed
CVE-2013-0887 was published May 17, 2022
An issue was discovered in the DBI module through 1.643 for Perl. DBD::File drivers can open... High Unreviewed
CVE-2014-10402 was published May 17, 2022
Sensitive information disclosure due to insecure folder permissions. The following products are... High Unreviewed
CVE-2022-30990 was published May 19, 2022
JFrog Artifactory prior to version 7.28.0 and 6.23.38, is vulnerable to Broken Access Control,... Moderate Unreviewed
CVE-2021-41834 was published May 24, 2022
Publify has Improper Access Controls Moderate
CVE-2022-1810 was published for publify_core (RubyGems) May 24, 2022
The ASUS ZenFone 3 Max Android device with a build fingerprint of asus/US_Phone/ASUS_X008_1:7.0... High Unreviewed
CVE-2018-14980 was published May 24, 2022
Zoho ManageEngine ADManager Plus 6.6 Build 6657 allows local users to gain privileges (after a... High Unreviewed
CVE-2018-19374 was published May 24, 2022
An exploitable Permission Assignment vulnerability exists in the ACEManager EmbeddedAceSet_Task... High Unreviewed
CVE-2018-4073 was published May 24, 2022
An exploitable Permission Assignment vulnerability exists in the ACEManager EmbeddedAceSet_Task... High Unreviewed
CVE-2018-4072 was published May 24, 2022
An exploitable firmware update vulnerability exists in the NT9665X Chipset firmware running on... High Unreviewed
CVE-2018-4028 was published May 24, 2022
A Local Privilege Escalation in libqcocoa.dylib in Foxit Reader 3.1.0.0111 on macOS has been... High Unreviewed
CVE-2019-8342 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database