Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

915 advisories

Loading
In all Qualcomm products with Android releases from CAF using the Linux kernel, a vulnerability... Critical Unreviewed
CVE-2015-9051 was published May 17, 2022
In all Qualcomm products with Android releases from CAF using the Linux kernel, a vulnerability... Critical Unreviewed
CVE-2015-9048 was published May 17, 2022
The PPAPI implementation in Google Chrome before 52.0.2743.82 does not validate the origin of IPC... Critical Unreviewed
CVE-2016-1706 was published May 17, 2022
The NETGEAR WNR2000v5 router allows an administrator to perform sensitive actions by invoking the... Critical Unreviewed
CVE-2016-10176 was published May 17, 2022
handle_daylightsaving.php in NUUO NVRmini 2 1.7.5 through 3.0.0, NUUO NVRsolo 1.0.0 through 3.0.0... Critical Unreviewed
CVE-2016-5675 was published May 17, 2022
__debugging_center_utils___.php in NUUO NVRmini 2 1.7.5 through 3.0.0, NUUO NVRsolo 1.7.5 through... Critical Unreviewed
CVE-2016-5674 was published May 17, 2022
A Remote Code Execution vulnerability was identified in all Windows versions of Unity Editor, e.g... Critical Unreviewed
CVE-2017-12939 was published May 17, 2022
Citrix NetScaler SD-WAN devices through v9.1.2.26.561201 allow remote attackers to execute... Critical Unreviewed
CVE-2017-6316 was published May 17, 2022
TeX Live allows remote attackers to execute arbitrary commands by leveraging inclusion of mpost... Critical Unreviewed
CVE-2016-10243 was published May 17, 2022
In the mboxlist_do_find function in imap/mboxlist.c in Cyrus IMAP before 3.0.4, an off-by-one... Critical Unreviewed
CVE-2017-14230 was published May 17, 2022
HPE iMC PLAT before 7.2 E0403P04, iMC EAD before 7.2 E0405P05, iMC APM before 7.2 E0401P04, iMC... Critical Unreviewed
CVE-2016-4372 was published May 17, 2022
Astaro Security Gateway (aka ASG) 7 allows remote attackers to execute arbitrary code via a... Critical Unreviewed
CVE-2017-6315 was published May 17, 2022
Proxy command injection vulnerability in Trend Micro OfficeScan 11 and XG (12) allows remote... Critical Unreviewed
CVE-2017-11394 was published May 17, 2022
An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue... Critical Unreviewed
CVE-2017-7124 was published May 17, 2022
An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue... Critical Unreviewed
CVE-2017-7123 was published May 17, 2022
An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue... Critical Unreviewed
CVE-2017-7122 was published May 17, 2022
An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue... Critical Unreviewed
CVE-2017-7125 was published May 17, 2022
An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue... Critical Unreviewed
CVE-2017-7126 was published May 17, 2022
An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue... Critical Unreviewed
CVE-2017-7121 was published May 17, 2022
The server in Red Hat JBoss Operations Network (JON) before 3.3.6 allows remote attackers to... Critical Unreviewed
CVE-2016-3737 was published May 17, 2022
The phar_convert_to_other function in ext/phar/phar_object.c in PHP before 5.4.43, 5.5.x before 5... Critical Unreviewed
CVE-2015-5589 was published May 17, 2022
Xen through 4.8.x does not validate memory allocations during certain P2M operations, which... Critical Unreviewed
CVE-2017-10918 was published May 17, 2022
An issue was discovered in Cloud Foundry Foundation routing-release versions prior to 0.142.0 and... Critical Unreviewed
CVE-2016-8218 was published May 17, 2022
nw.js before 0.11.5 can simulate user input events in a normal frame, which allows remote... Critical Unreviewed
CVE-2014-9733 was published May 17, 2022
A input validation vulnerability in HPE Operations Orchestration product all versions prior to 10... Critical Unreviewed
CVE-2017-8994 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database