GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,614
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,638
Maven 6,105
npm 4,264
NuGet 760
pip 4,060
Pub 12
RubyGems 956
Rust 1,056
Swift 45

Unreviewed advisories

All unreviewed 277,032

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

6,774 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability in the management console of Cisco Firepower System Software could allow an... Moderate Unreviewed

CVE-2018-0278 was published May 13, 2022

A vulnerability in Cisco WebEx Recording Format (WRF) Player could allow an unauthenticated,... Moderate Unreviewed

CVE-2018-0288 was published May 13, 2022

Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101... Moderate Unreviewed

CVE-2016-5597 was published May 13, 2022

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent... Moderate Unreviewed

CVE-2017-10356 was published May 13, 2022

The format-number functionality in the XSLT implementation in Mozilla Firefox before 15.0,... Moderate Unreviewed

CVE-2012-3972 was published May 13, 2022

OpenJPEG 1.3 and earlier allows remote attackers to obtain sensitive information via unspecified... Moderate Unreviewed

CVE-2013-6052 was published May 13, 2022

An information disclosure vulnerability exists in the way some ActiveX objects are instantiated,... Moderate Unreviewed

CVE-2017-0242 was published May 13, 2022

The Microsoft Windows Embedded OpenType (EOT) font engine in Microsoft Windows 7 SP1 and Windows... Moderate Unreviewed

CVE-2018-0855 was published May 13, 2022

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1,... Moderate Unreviewed

CVE-2017-0258 was published May 13, 2022

The Ancillary Function Driver (AFD) in afd.sys in the kernel-mode drivers in Microsoft Windows XP... Moderate Unreviewed

CVE-2013-3887 was published May 13, 2022

Microsoft Active Directory Federation Services (AD FS) 1.x through 2.1 on Windows Server 2003 R2... Moderate Unreviewed

CVE-2013-3185 was published May 13, 2022

The CBC mode in the TLS protocol, as used in Microsoft Windows XP SP2 and SP3, Windows Server... Moderate Unreviewed

CVE-2012-1870 was published May 13, 2022

Microsoft .NET Framework 2.0 SP2 and 3.5.1 does not properly consider trust levels during... Moderate Unreviewed

CVE-2012-1896 was published May 13, 2022

The ASP.NET Chart controls in Microsoft .NET Framework 4, and Chart Control for Microsoft .NET... Moderate Unreviewed

CVE-2011-1977 was published May 13, 2022

Microsoft .NET Framework 2.0 SP2, 3.5.1, and 4 does not properly validate the System.Net.Sockets... Moderate Unreviewed

CVE-2011-1978 was published May 13, 2022

Grafana before 4.6.5 and 5.x before 5.3.3 allows remote authenticated users to read arbitrary... Moderate Unreviewed

CVE-2018-19039 was published May 13, 2022

libvirt before 2.2 includes Ceph credentials on the qemu command line when using RADOS Block... Moderate Unreviewed

CVE-2015-5160 was published May 13, 2022

The v9fs_xattrcreate function in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local guest OS... Moderate Unreviewed

CVE-2016-9103 was published May 13, 2022

In Kibana X-Pack security versions prior to 5.4.3 if a Kibana user opens a crafted Kibana URL the... Moderate Unreviewed

CVE-2017-8443 was published May 13, 2022

Artifex Ghostscript allows attackers to bypass a sandbox protection mechanism by leveraging... Moderate Unreviewed

CVE-2018-18073 was published May 13, 2022

IBM Security Access Manager for Web allows web pages to be stored locally which can be read by... Moderate Unreviewed

CVE-2016-3024 was published May 13, 2022

IBM Security Access Manager for Web could allow a remote attacker to obtain sensitive information... Moderate Unreviewed

CVE-2016-3043 was published May 13, 2022

IBM Security Access Manager for Web could allow an unauthenticated user to gain access to... Moderate Unreviewed

CVE-2016-3023 was published May 13, 2022

IBM Security Access Manager for Web could allow an authenticated attacker to obtain sensitive... Moderate Unreviewed

CVE-2016-3021 was published May 13, 2022

QEMU (aka Quick Emulator) built with the Virtio GPU Device emulator support is vulnerable to an... Moderate Unreviewed

CVE-2016-9845 was published May 13, 2022

Previous 1…236…271 Next

Previous 1 2 … 234 235 236 237 238 … 270 271 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

6,774 advisories