Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

542 advisories

Loading
An unspecified script in the web interface in Cisco Firepower Extensible Operating System 1.1(1... Moderate Unreviewed
CVE-2015-6380 was published May 17, 2022
KDDI HOME SPOT CUBE devices before 2 allow remote authenticated users to execute arbitrary OS... Moderate Unreviewed
CVE-2016-1141 was published May 17, 2022
baserCMS 3.0.2 through 3.0.8 allows remote authenticated users to execute arbitrary OS commands... Moderate Unreviewed
CVE-2015-7769 was published May 17, 2022
McAfee Enterprise Security Manager (ESM), Enterprise Security Manager/Log Manager (ESMLM), and... Moderate Unreviewed
CVE-2015-7310 was published May 17, 2022
The CLI parser in Cisco NX-OS 4.1(2)E1(1), 6.2(11b), 6.2(12), 7.2(0)ZZ(99.1), 7.2(0)ZZ(99.3), and... Moderate Unreviewed
CVE-2015-4237 was published May 17, 2022
The CLI in Cisco Prime Collaboration 9.0 and 11.0 allows local users to execute arbitrary OS... Moderate Unreviewed
CVE-2016-1320 was published May 17, 2022
A local file script in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2... Moderate Unreviewed
CVE-2015-4330 was published May 17, 2022
A vulnerability in CLI command processing in the Cisco Firepower 4100 Series Next-Generation... Moderate Unreviewed
CVE-2017-3806 was published May 17, 2022
WNC01WH firmware 1.0.0.9 and earlier allows authenticated attackers to execute arbitrary OS... Moderate Unreviewed
CVE-2017-2152 was published May 17, 2022
A vulnerability in a startup script of Cisco IOS XE Software could allow an unauthenticated... Moderate Unreviewed
CVE-2017-6606 was published May 17, 2022
Cisco TelePresence endpoints running either CE or TC software contain a vulnerability that could... Moderate Unreviewed
CVE-2016-6459 was published May 17, 2022
GigaCC OFFICE ver.2.3 and earlier allows remote attackers to execute arbitrary OS commands via... Moderate Unreviewed
CVE-2016-7844 was published May 17, 2022
delivery.php in the Passive Capture Application (PCA) web console in IBM Tealeaf CX 7.x, 8.x... Moderate Unreviewed
CVE-2013-6719 was published May 17, 2022
Infinite Automation Mango Automation 2.5.x and 2.6.x through 2.6.0 build 430 allows remote... Moderate Unreviewed
CVE-2015-7901 was published May 17, 2022
The WP-DBManager (aka Database Manager) plugin before 2.7.2 for WordPress allows remote... Moderate Unreviewed
CVE-2014-8334 was published May 14, 2022
/usr/local/cm/bin/pktCap_protectData in Cisco Unified Communications Manager (aka CUCM, formerly... Moderate Unreviewed
CVE-2010-3039 was published May 14, 2022
Puppet Arbitrary Command Execution Moderate
CVE-2012-1988 was published for puppet (RubyGems) May 14, 2022
programs/pluto/xauth.c in the client in Openswan 2.6.26 through 2.6.28 allows remote... Moderate Unreviewed
CVE-2010-3753 was published May 14, 2022
programs/pluto/xauth.c in the client in Openswan 2.6.25 through 2.6.28 allows remote... Moderate Unreviewed
CVE-2010-3752 was published May 14, 2022
A vulnerability in the CLI of Cisco Unified Computing System (UCS) Manager, Cisco Firepower 4100... Moderate Unreviewed
CVE-2017-6602 was published May 13, 2022
The Pulse Secure Desktop (macOS) 5.3RX before 5.3R5 and 9.0R1 has a Privilege Escalation... Moderate Unreviewed
CVE-2018-15726 was published May 13, 2022
Grandstream GWN7000 before 1.0.6.32 and GWN7610 before 1.0.8.18 devices allow remote... Moderate Unreviewed
CVE-2019-10657 was published May 13, 2022
Dell EMC RecoverPoint versions prior to 5.1.2 and RecoverPoint for VMs versions prior to 5.1.1.3,... Moderate Unreviewed
CVE-2018-1242 was published May 13, 2022
A vulnerability in the CLI of the Cisco StarOS operating system for Cisco ASR 5000 Series... Moderate Unreviewed
CVE-2018-0122 was published May 13, 2022
A vulnerability in certain CLI commands of Cisco Identity Services Engine (ISE) could allow an... Moderate Unreviewed
CVE-2018-0214 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database