GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,600
Composer 5,005
Erlang 39
GitHub Actions 38
Go 2,635
Maven 6,103
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,393

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,064 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The kernel in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1,... Low Unreviewed

CVE-2015-6102 was published May 14, 2022

IBM Java Security Components in IBM SDK, Java Technology Edition 8 before SR2, 7 R1 before SR3... Low Unreviewed

CVE-2015-5006 was published May 14, 2022

Samsung SBeam allows remote attackers to read arbitrary images by leveraging an NFC connection to... Low Unreviewed

CVE-2015-4033 was published May 14, 2022

Puppet Enterprise before 3.0.1 uses HTTP responses that contain sensitive information without the... Low Unreviewed

CVE-2013-4959 was published May 14, 2022

Puppet Labs Facter allows local users to obtain sensitive Amazon EC2 IAM instance metadata Low

CVE-2015-1426 was published for facter (RubyGems) May 14, 2022

The ARM prefetch abort handler in the kernel in Apple iOS before 6.1.3 and Apple TV before 5.2.1... Low Unreviewed

CVE-2013-0978 was published May 13, 2022

IBM WebSphere Commerce 6.x through 6.0.0.11 and 7.x before 7.0.0.8 IF2 allows local users to... Low Unreviewed

CVE-2015-0200 was published May 13, 2022

The command-line scripts in IBM WebSphere Commerce 6.0 through 6.0.0.11, 7.0 through 7.0.0.9, and... Low Unreviewed

CVE-2014-6211 was published May 13, 2022

Exposure of Sensitive Information to an Unauthorized Actor in Oracle MySQL Connectors Java Low

CVE-2017-3589 was published for mysql:mysql-connector-java (Maven) May 13, 2022

HP SQL/MX 3.2 and earlier on NonStop servers, when SQL/MP Objects are used, allows remote... Low Unreviewed

CVE-2013-2322 was published May 13, 2022

HP LaserJet M4555, M525, and M725; LaserJet flow MFP M525c; LaserJet Enterprise color flow MFP... Low Unreviewed

CVE-2013-4829 was published May 13, 2022

A vulnerability has been identified in IBM Cloud Orchestrator 2.3, 2.3.0.1, 2.4, and 2.4.0.1 that... Low Unreviewed

CVE-2016-0205 was published May 13, 2022

The Trackr device ID is constructed of a manufacturer identifier of four zeroes followed by the... Low Unreviewed

CVE-2016-6539 was published May 13, 2022

Nextcloud Server before 10.0.4 and 11.0.2 are vulnerable to disclosure of calendar and... Low Unreviewed

CVE-2017-0895 was published May 13, 2022

IBM Spectrum Scale 4.1.1 and 4.2.0 - 4.2.3 could allow a local unprivileged user access to... Low Unreviewed

CVE-2017-1654 was published May 13, 2022

IBM Business Process Manager 8.6 allows web pages to be stored locally which can be read by... Low Unreviewed

CVE-2017-1756 was published May 13, 2022

Exposure of Sensitive Information to an Unauthorized Actor in Jenkins Low

CVE-2017-2603 was published for org.jenkins-ci.main:jenkins-core (Maven) May 13, 2022

Exposure of Sensitive Information to an Unauthorized Actor in Jenkins-mailer-plugin Low

CVE-2017-2651 was published for org.jenkins-ci.plugins:mailer (Maven) May 13, 2022

The Receptionist for iPad could allow a local attacker to obtain sensitive information, caused by... Low Unreviewed

CVE-2018-17502 was published May 13, 2022

IBM i2 Enterprise Insight Analysis 2.1.7 allows web pages to be stored locally which can be read... Low Unreviewed

CVE-2018-1505 was published May 13, 2022

IBM QRadar SIEM 7.2 and 7.3 allows web pages to be stored locally which can be read by another... Low Unreviewed

CVE-2018-1568 was published May 13, 2022

IBM Security Privileged Identity Manager Virtual Appliance 2.2.1 allows web pages to be stored... Low Unreviewed

CVE-2018-1623 was published May 13, 2022

IBM Spectrum Scale (GPFS) 4.1.1, 4.2.0, 4.2.1, 4.2.2, 4.2.3, and 5.0.0 where the use of Local... Low Unreviewed

CVE-2018-1993 was published May 13, 2022

The Linux kernel, as used in Ubuntu 18.04 LTS and Ubuntu 18.10, allows local users to obtain... Low Unreviewed

CVE-2018-6559 was published May 13, 2022

methods/https.cc in apt before 0.8.11 accepts connections when the certificate host name fails... Low Unreviewed

CVE-2011-3634 was published May 13, 2022

Previous 1…35…43 Next

Previous 1 2 … 33 34 35 36 37 … 42 43 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,064 advisories