Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,064 advisories

Loading
Insecure temporary file usage in Jenkins Git Client Plugin Low
CVE-2017-1000242 was published for org.jenkins-ci.plugins:git-client (Maven) May 17, 2022
An issue was discovered in certain Apple products. macOS before 10.13.1 is affected. The issue... Low Unreviewed
CVE-2017-13801 was published May 17, 2022
An issue was discovered in certain Apple products. iOS before 11.1 is affected. The issue... Low Unreviewed
CVE-2017-13805 was published May 17, 2022
Microsoft Graphics Component in Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10... Low Unreviewed
CVE-2017-11850 was published May 17, 2022
In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p4, 11.0-RELEASE-p15, 10.4-STABLE, 10.4-RELEASE-p3,... Low Unreviewed
CVE-2017-1086 was published May 17, 2022
In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p4, 11.0-RELEASE-p15, 10.4-STABLE, 10.4-RELEASE-p3,... Low Unreviewed
CVE-2017-1088 was published May 17, 2022
Windows Media Player in Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and RT 8.1... Low Unreviewed
CVE-2017-11768 was published May 17, 2022
The installation process for Citrix Presentation Server 4.5 and Desktop Server 1.0, when MSI... Low Unreviewed
CVE-2008-5107 was published May 17, 2022
Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and... Low Unreviewed
CVE-2017-11833 was published May 17, 2022
ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1,... Low Unreviewed
CVE-2017-11791 was published May 17, 2022
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: X Plugin).... Low Unreviewed
CVE-2017-3319 was published May 17, 2022
The UMA product with software V200R001 and V300R001 has an information leak vulnerability. An... Low Unreviewed
CVE-2017-8118 was published May 17, 2022
HUAWEI HiLink APP (for IOS) versions earlier before 5.0.25.306 and HUAWEI Tech Support APP (for... Low Unreviewed
CVE-2017-2730 was published May 17, 2022
Intuit QuickBooks 2009 through 2012 might allow remote attackers to obtain pathname information... Low Unreviewed
CVE-2012-2422 was published May 17, 2022
IBM Atlas eDiscovery Process Management 6.0.3 could allow an authenticated attacker to obtain... Low Unreviewed
CVE-2017-1353 was published May 17, 2022
Prior to 4.4.1.10, the Norton Family Android App can be susceptible to an Information Disclosure... Low Unreviewed
CVE-2017-15530 was published May 14, 2022
kernel/taskstats.c in the Linux kernel before 3.1 allows local users to obtain sensitive I/O... Low Unreviewed
CVE-2011-2494 was published May 14, 2022
Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.5, Thunderbird 5.0 through 12.0,... Low Unreviewed
CVE-2012-1945 was published May 14, 2022
OpenStack Heat template URL information leakage Low
CVE-2014-3801 was published for openstack-heat (pip) May 14, 2022
IBM Security Guardium 10.0 stores potentially sensitive information in log files that could be... Low Unreviewed
CVE-2017-1261 was published May 14, 2022
The __switch_to function in arch/x86/kernel/process_64.c in the Linux kernel through 3.18.1 does... Low Unreviewed
CVE-2014-9419 was published May 14, 2022
sudo before 1.8.12 does not ensure that the TZ environment variable is associated with a zoneinfo... Low Unreviewed
CVE-2014-9680 was published May 14, 2022
kernel/bpf/verifier.c in the Linux kernel through 4.14.8 mishandles states_equal comparisons... Low Unreviewed
CVE-2017-17864 was published May 14, 2022
IBM Security Access Manager Appliance 9.0.0 allows web pages to be stored locally which can be... Low Unreviewed
CVE-2017-1478 was published May 14, 2022
IBM WebSphere Application Server (IBM Liberty for Java for Bluemix 3.15) could allow a local... Low Unreviewed
CVE-2017-1681 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database