Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,064 advisories

Loading
Microsoft Edge in Microsoft Windows 10 1703 and 1709 allows information disclosure, due to how... Low Unreviewed
CVE-2018-0763 was published May 14, 2022
IBM Financial Transaction Manager 3.0.4 and 3.1.0 for ACH Services for Multi-Platform could allow... Low Unreviewed
CVE-2018-1392 was published May 14, 2022
IBM Financial Transaction Manager (FTM) for ACH Services for Multi-Platform 2.1.1.2 and 3.0.0.x... Low Unreviewed
CVE-2016-0275 was published May 14, 2022
NFC (Near Field Communication) module in Huawei mobile phones with software LON-AL00BC00 has an... Low Unreviewed
CVE-2017-17280 was published May 14, 2022
IBM Rational Collaborative Lifecycle Management (CLM) 4.0.x before 4.0.7 iFix10, 5.0.x before 5.0... Low Unreviewed
CVE-2015-7449 was published May 14, 2022
The ProcessVolumeDeviceControlIrp function in Ntdriver.c in TrueCrypt 7.1a allows local users to... Low Unreviewed
CVE-2014-2884 was published May 14, 2022
The Administration and Reporting tool in IBM Rational License Key Server (RLKS) before 8.1.4.9... Low Unreviewed
CVE-2015-5045 was published May 14, 2022
An issue was discovered in certain Apple products. iOS before 11.3 is affected. The issue... Low Unreviewed
CVE-2018-4123 was published May 14, 2022
Jenkins Reverse Proxy Auth Plugin allows attackers with local file system access to obtain a list of authorities for logged in users Low
CVE-2018-1000150 was published for org.jenkins-ci.plugins:reverse-proxy-auth-plugin (Maven) May 14, 2022
Jenkins GitHub Pull Request Builder Plugin Low
CVE-2018-1000143 was published for org.jenkins-ci.plugins:ghprb (Maven) May 14, 2022
Automatic Bug Reporting Tool (ABRT) before 2.1.6 allows local users to obtain sensitive... Low Unreviewed
CVE-2013-4209 was published May 14, 2022
In Android before the 2018-05-05 security patch level, NVIDIA Media Server contains an out-of... Low Unreviewed
CVE-2018-6254 was published May 14, 2022
Jenkins GitHub Pull Request Builder Plugin credential capture vulnerability Low
CVE-2018-1000186 was published for org.jenkins-ci.plugins:ghprb (Maven) May 14, 2022
binary-1024
Credited to binary-1024
Private browsing mode leaves metadata information, such as URLs, for sites visited in "browser.db... Low Unreviewed
CVE-2016-9062 was published May 14, 2022
linenoise, as used in Redis before 3.2.3, uses world-readable permissions for .rediscli_history,... Low Unreviewed
CVE-2013-7458 was published May 14, 2022
Jenkins meliora-testlab Plugin allows attackers with file system access to Jenkins master to obtain API key Low
CVE-2018-1999031 was published for org.jenkins-ci.plugins:meliora-testlab (Maven) May 14, 2022
The (1) cudaHostAlloc and (2) cuMemHostAlloc functions in the NVIDIA CUDA Toolkit 3.2 developer... Low Unreviewed
CVE-2011-0636 was published May 14, 2022
crontab.c in crontab in FreeBSD allows local users to determine the existence of arbitrary... Low Unreviewed
CVE-2011-1074 was published May 14, 2022
Libcloud does not properly scrub data when destroying a DigitalOcean node Low
CVE-2013-6480 was published for apache-libcloud (pip) May 14, 2022
RICOS in IBM Algo Credit Limits (aka ACLM) 4.5.0 through 4.7.0 before 4.7.0.03 FP5 in IBM... Low Unreviewed
CVE-2014-0894 was published May 14, 2022
The bsdinstall installer in FreeBSD 10.x before 10.1 p9, when configuring full disk encrypted ZFS... Low Unreviewed
CVE-2015-1415 was published May 14, 2022
The (1) mdare64_48.sys, (2) mdare32_48.sys, (3) mdare32_52.sys, and (4) mdare64_52.sys drivers in... Low Unreviewed
CVE-2015-4077 was published May 14, 2022
VeeamVixProxy in Veeam Backup & Replication (B&R) before 8.0 update 3 stores local administrator... Low Unreviewed
CVE-2015-5742 was published May 14, 2022
Revive Adserver before 3.2.2 does not send the appropriate Cache-Control HTTP headers in... Low Unreviewed
CVE-2015-7368 was published May 14, 2022
The Coda filesystem kernel module, as used in NetBSD and FreeBSD, when Coda is loaded and Venus... Low Unreviewed
CVE-2010-3014 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database