GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,600
Composer 5,005
Erlang 39
GitHub Actions 38
Go 2,635
Maven 6,103
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,378

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

915 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

D-Link DIR-130 firmware version 1.23 and DIR-330 firmware version 1.12 are vulnerable to... Critical Unreviewed

CVE-2017-3191 was published May 13, 2022

GIGABYTE BRIX UEFI firmware for the GB-BSi7H-6500 (version F6) and GB-BXi7-5775 (version F2)... Critical Unreviewed

CVE-2017-3197 was published May 13, 2022

In cryptctl before version 2.0 a malicious server could send RPC requests that could overwrite... Critical Unreviewed

CVE-2017-9270 was published May 13, 2022

In libzypp before August 2018 GPG keys attached to YUM repositories were not correctly pinned,... Critical Unreviewed

CVE-2017-9269 was published May 13, 2022

Junos OS routing protocol daemon (RPD) process may crash and restart or may lead to remote code... Critical Unreviewed

CVE-2018-0037 was published May 13, 2022

A vulnerability in Cisco WebEx Network Recording Player for Advanced Recording Format (ARF) files... Critical Unreviewed

CVE-2018-0104 was published May 13, 2022

A vulnerability in Cisco WebEx Business Suite clients, Cisco WebEx Meetings, and Cisco WebEx... Critical Unreviewed

CVE-2018-0112 was published May 13, 2022

A vulnerability in the web interface of the Cisco RV132W ADSL2+ Wireless-N VPN and RV134W VDSL2... Critical Unreviewed

CVE-2018-0125 was published May 13, 2022

A vulnerability in the ACS Report component of Cisco Secure Access Control System (ACS) could... Critical Unreviewed

CVE-2018-0253 was published May 13, 2022

A vulnerability in the Cisco WebEx Network Recording Player for Advanced Recording Format (ARF)... Critical Unreviewed

CVE-2018-0264 was published May 13, 2022

redhat-certification does not properly sanitize paths in rhcertStore.py:__saveResultsFile. A... Critical Unreviewed

CVE-2018-10870 was published May 13, 2022

Improper input validation in obs-service-tar_scm of Open Build Service allows remote attackers to... Critical Unreviewed

CVE-2018-12474 was published May 13, 2022

Entes EMG12 versions 2.57 and prior The application uses a web interface where it is possible for... Critical Unreviewed

CVE-2018-14826 was published May 13, 2022

Zoom clients on Windows (before version 4.1.34814.1119), Mac OS (before version 4.1.34801.1116),... Critical Unreviewed

CVE-2018-15715 was published May 13, 2022

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... Critical Unreviewed

CVE-2018-1161 was published May 13, 2022

An Improper Input Validation issue was discovered in Nari PCS-9611 relay. An improper input... Critical Unreviewed

CVE-2018-5447 was published May 13, 2022

Philips Intellispace Portal all versions 7.0.x and 8.0.x have an input validation vulnerability... Critical Unreviewed

CVE-2018-5474 was published May 13, 2022

Multipart-file uploads call variables to be improperly registered in the global scope. In cases... Critical Unreviewed

CVE-2018-6334 was published May 13, 2022

Nuclide Improper Input Validation Critical

CVE-2018-6333 was published for nuclide (npm) May 13, 2022

Philips e-Alert Unit (non-medical device), Version R2.1 and prior. The software does not validate... Critical Unreviewed

CVE-2018-8850 was published May 13, 2022

In Lantech IDS 2102 2.0 and prior, nearly all input fields allow for arbitrary input on the... Critical Unreviewed

CVE-2018-8869 was published May 13, 2022

A vulnerability in lack of validation of user-supplied parameters pass to XML-RPC calls on... Critical Unreviewed

CVE-2018-9866 was published May 13, 2022

A vulnerability in the web-based management interface of Session Initiation Protocol (SIP)... Critical Unreviewed

CVE-2019-1716 was published May 13, 2022

A vulnerability in the sysadmin virtual machine (VM) on Cisco ASR 9000 Series Aggregation... Critical Unreviewed

CVE-2019-1710 was published May 13, 2022

IBM Domino 8.5 and 9.0 could allow an attacker to steal credentials using multiple sessions and... Critical Unreviewed

CVE-2016-6087 was published May 13, 2022

Previous 1…30…37 Next

Previous 1 2 … 28 29 30 31 32 … 36 37 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

915 advisories