Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,064 advisories

Loading
The kernel in Apple OS X before 10.9.5 allows local users to obtain sensitive address information... Low Unreviewed
CVE-2014-4403 was published May 17, 2022
CFNetwork in Apple iOS before 8.1.1 and OS X before 10.10.1 does not properly clear the browsing... Low Unreviewed
CVE-2014-4460 was published May 17, 2022
The EMC NetWorker Module for MEDITECH (aka NMMEDI) 3.0 build 87 through 90, when EMC RecoverPoint... Low Unreviewed
CVE-2014-4620 was published May 17, 2022
IBM PowerVC Express Edition 1.2.0 before FixPack3 establishes an FTP session for transferring... Low Unreviewed
CVE-2014-4750 was published May 17, 2022
The installer in IBM Security AppScan Source 8.x and 9.x through 9.0.1 has an open network port... Low Unreviewed
CVE-2014-4812 was published May 17, 2022
IBM DB2 10.5 before FP4 on Linux and AIX creates temporary files during CDE table LOAD operations... Low Unreviewed
CVE-2014-4805 was published May 17, 2022
IBM ServerGuide before 9.63, UpdateXpress System Packs Installer (UXSPI) before 9.63, and... Low Unreviewed
CVE-2014-4835 was published May 17, 2022
The ESET Personal Firewall NDIS filter (EpFwNdis.sys) kernel mode driver, aka Personal Firewall... Low Unreviewed
CVE-2014-4974 was published May 17, 2022
IBM MaaS360 DTM all versions up to 3.81 does not perform proper verification for user rights of... Low Unreviewed
CVE-2017-1422 was published May 17, 2022
IBM Spectrum Protect (formerly Tivoli Storage Manager) 5.5 through 6.3 before 6.3.2.6, 6.4 before... Low Unreviewed
CVE-2016-2894 was published May 17, 2022
The Siri Contacts component in Apple iOS before 9.3.3 allows physically proximate attackers to... Low Unreviewed
CVE-2016-4593 was published May 17, 2022
CFNetwork in Apple OS X before 10.11.6 uses weak permissions for web-browser cookies, which... Low Unreviewed
CVE-2016-4645 was published May 17, 2022
IBM Sametime Connect 8.5.2 and 9.0, after uninstalling the Sametime Rich Client, could disclose... Low Unreviewed
CVE-2016-2974 was published May 17, 2022
IBM Sametime 8.5.2 and 9.0 could store potentially sensitive information from the browser cache... Low Unreviewed
CVE-2016-2978 was published May 17, 2022
Information exposure in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier)... Low Unreviewed
CVE-2016-8016 was published May 17, 2022
Zarafa 5.00 uses world-readable permissions for the files in the log directory, which allows... Low Unreviewed
CVE-2014-5448 was published May 17, 2022
Zarafa WebAccess 4.1 and WebApp uses world-readable permissions for the files in their tmp... Low Unreviewed
CVE-2014-5449 was published May 17, 2022
IBM Rational AppScan Source 8.0 through 8.0.0.2 and 8.5 through 8.5.0.1 and Security AppScan... Low Unreviewed
CVE-2014-6123 was published May 17, 2022
The IBM WebSphere DataPower XC10 appliance 2.1 and 2.5 before FP4 allows local users to obtain... Low Unreviewed
CVE-2014-6143 was published May 17, 2022
IBM Sterling B2B Integrator 5.2.x through 5.2.4, when the Connect:Direct Server Adapter is... Low Unreviewed
CVE-2014-6146 was published May 17, 2022
IBM Flex System Manager (FSM) 1.1.x.x, 1.2.0.x, 1.2.1.x, 1.3.0.0, 1.3.1.0, and 1.3.2.0 allows... Low Unreviewed
CVE-2014-6147 was published May 17, 2022
McAfee Network Data Loss Prevention (NDLP) before 9.2.2 allows local users to obtain sensitive... Low Unreviewed
CVE-2014-8537 was published May 17, 2022
McAfee Network Data Loss Prevention (NDLP) before 9.2.2 allows local users to obtain sensitive... Low Unreviewed
CVE-2014-8536 was published May 17, 2022
UserAccountUpdater in Apple OS X 10.10 before 10.10.2 stores a PDF document's password in a... Low Unreviewed
CVE-2014-8834 was published May 17, 2022
The InputAccel Database (IADB) installation process in EMC Captiva Capture 7.0 before patch 25... Low Unreviewed
CVE-2015-0519 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database