Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,064 advisories

Loading
NVIDIA GeForce Experience all versions prior to 3.14.1 contains a potential vulnerability when... Low Unreviewed
CVE-2018-6259 was published May 14, 2022
The processutils.execute function in OpenStack oslo-incubator, Cinder, Nova, and Trove before... Low Unreviewed
CVE-2014-7230 was published May 14, 2022
OpenStack Compute (Nova) before 2015.1.3 (kilo) and 12.0.x before 12.0.1 (liberty), when using... Low Unreviewed
CVE-2015-7548 was published May 14, 2022
OpenStack Oslo utility sensitive information exposure via log files Low
CVE-2014-7231 was published for oslo.utils (pip) May 14, 2022
An information disclosure vulnerability exists when the Microsoft Edge Fetch API incorrectly... Low Unreviewed
CVE-2018-8366 was published May 14, 2022
NVIDIA GeForce Experience prior to 3.15 contains a vulnerability when GameStream is enabled where... Low Unreviewed
CVE-2018-6262 was published May 14, 2022
SAP Sybase Unwired Platform Online Data Proxy allows local users to obtain usernames and... Low Unreviewed
CVE-2015-3978 was published May 14, 2022
The rtnl_fill_link_ifmap function in net/core/rtnetlink.c in the Linux kernel before 4.5.5 does... Low Unreviewed
CVE-2016-4486 was published May 14, 2022
Caddy allows enumeration of Certificates and Hostnames Low
CVE-2018-19148 was published for github.com/caddyserver/caddy (Go) May 14, 2022
The Audio component in Android before 5.1.1 LMY48Z and 6.0 before 2015-12-01 allows remote... Low Unreviewed
CVE-2015-6627 was published May 14, 2022
The fpu_fxrstor function in arch/x86/i387.c in Xen 4.x does not properly handle writes to the... Low Unreviewed
CVE-2016-3159 was published May 14, 2022
Accounts Framework in Apple iOS before 8 and Apple TV before 7 allows attackers to obtain... Low Unreviewed
CVE-2014-4357 was published May 14, 2022
IOMobileFramebuffer in Apple iOS before 8.3 and Apple TV before 7.2 allows attackers to obtain... Low Unreviewed
CVE-2015-1097 was published May 14, 2022
The Sandbox Profiles component in Apple iOS before 8.3 and Apple TV before 7.2 allows attackers... Low Unreviewed
CVE-2015-1114 was published May 14, 2022
IOAcceleratorFamily in Apple iOS before 8.3 and Apple TV before 7.2 allows attackers to obtain... Low Unreviewed
CVE-2015-1094 was published May 14, 2022
IOHIDFamily in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 allows... Low Unreviewed
CVE-2015-1096 was published May 14, 2022
The Sandbox feature in xnu in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and... Low Unreviewed
CVE-2015-7046 was published May 14, 2022
Splunk Enterprise 5.0.x before 5.0.18, 6.0.x before 6.0.14, 6.1.x before 6.1.13, 6.2.x before 6.2... Low Unreviewed
CVE-2017-5607 was published May 14, 2022
The rsa_verify function in PuTTY before 0.63 (1) does not clear sensitive process memory after... Low Unreviewed
CVE-2013-4208 was published May 14, 2022
The (1) ssh2_load_userkey and (2) ssh2_save_userkey functions in PuTTY 0.51 through 0.63 do not... Low Unreviewed
CVE-2015-2157 was published May 14, 2022
SynTP.sys in Synaptics Touchpad drivers before 2018-06-06 allows local users to obtain sensitive... Low Unreviewed
CVE-2018-15532 was published May 14, 2022
A logic issue was addressed with improved restrictions. This issue affected versions prior to iOS... Low Unreviewed
CVE-2018-4325 was published May 14, 2022
Buffer leakage in igdkm64.sys in Intel(R) Graphics Driver for Windows* before versions 10.18.x... Low Unreviewed
CVE-2018-12224 was published May 14, 2022
A lock screen issue allowed access to photos via Reply With Message on a locked device. This... Low Unreviewed
CVE-2018-4387 was published May 14, 2022
A lock screen issue allowed access to contacts on a locked device. This issue was addressed with... Low Unreviewed
CVE-2018-4430 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database