Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,064 advisories

Loading
Lenovo USB Enhanced Performance Keyboard software before 2.0.2.2 includes active debugging code... Low Unreviewed
CVE-2015-3320 was published May 17, 2022
Vulnerability in the Oracle GlassFish Server component of Oracle Fusion Middleware (subcomponent:... Low Unreviewed
CVE-2017-3239 was published May 17, 2022
IBM Kenexa LMS on Cloud allows web pages to be stored locally which can be read by another user... Low Unreviewed
CVE-2016-5938 was published May 17, 2022
Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services... Low Unreviewed
CVE-2016-8305 was published May 17, 2022
A vulnerability has been identified in tasks, backend object generated for handling any action... Low Unreviewed
CVE-2016-0202 was published May 17, 2022
An issue was discovered in certain Apple products. iOS before 10.2 is affected. The issue... Low Unreviewed
CVE-2016-7765 was published May 17, 2022
Salt uses weak permissions on the cache data Low
CVE-2015-8034 was published for salt (pip) May 17, 2022
IBM Maximo Asset Management 7.1, 7.5, and 7.6 could allow a local attacker to obtain sensitive... Low Unreviewed
CVE-2017-1124 was published May 17, 2022
The Cybozu kintone mobile application 1.x before 1.0.6 for Android allows attackers to discover... Low Unreviewed
CVE-2016-1185 was published May 17, 2022
An unspecified vulnerability in IBM Rhapsody DM 4.0, 5.0, and 6.0 could allow an attacker to... Low Unreviewed
CVE-2016-9697 was published May 17, 2022
Cloudera Navigator 2.2.x before 2.2.4 and 2.3.x before 2.3.3 include support for SSLv3 when... Low Unreviewed
CVE-2015-4078 was published May 17, 2022
Samsung SecEmailSync on SM-G920F build G920FXXU2COH2 (Galaxy S6) devices allows attackers to read... Low Unreviewed
CVE-2016-2565 was published May 17, 2022
Cybozu KUNAI for Android 3.0.4 to 3.0.5.1 allow remote attackers to obtain log information... Low Unreviewed
CVE-2017-2109 was published May 17, 2022
Xen PV guest before Xen 4.3 checked access permissions to MMIO ranges only after accessing them,... Low Unreviewed
CVE-2017-7995 was published May 17, 2022
Exposure of Sensitive Information to an Unauthorized Actor in Apache Tomcat Low
CVE-2013-2071 was published for org.apache.tomcat:tomcat (Maven) May 17, 2022
IBM Cognos Analytics 10.1 and 10.2 could allow a local user to craft a URL which could confirm... Low Unreviewed
CVE-2017-1125 was published May 17, 2022
Libgcrypt before 1.6.5 does not properly perform elliptic-point curve multiplication during... Low Unreviewed
CVE-2015-7511 was published May 17, 2022
A Win32k information disclosure vulnerability exists in Windows 8.1, Windows RT 8.1, Windows... Low Unreviewed
CVE-2017-0188 was published May 17, 2022
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel... Low Unreviewed
CVE-2017-3498 was published May 17, 2022
NetIQ Access Manager 4.2 before SP3 HF1 and 4.3 before SP1 HF1, when configured as a SAML 2.0... Low Unreviewed
CVE-2017-5190 was published May 17, 2022
Windows Media Player in Microsoft Windows 8.1; Windows Server 2012 R2; Windows RT 8.1; Windows 7... Low Unreviewed
CVE-2017-0042 was published May 17, 2022
An issue was discovered in certain Apple products. iOS before 10.3 is affected. The issue... Low Unreviewed
CVE-2017-2384 was published May 17, 2022
An issue was discovered in certain Apple products. iOS before 10.3 is affected. The issue... Low Unreviewed
CVE-2017-2397 was published May 17, 2022
Hyper-V in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2; Windows 7 SP1; Windows 8... Low Unreviewed
CVE-2017-0096 was published May 17, 2022
IBM Maximo Asset Management 7.1, 7.5, and 7.6 could allow a local user to obtain sensitive... Low Unreviewed
CVE-2017-1176 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database