Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

9,975 advisories

Loading
The toStaticHTML API (aka the SafeHTML component) in Microsoft Internet Explorer 8 and 9,... Moderate Unreviewed
CVE-2012-1858 was published May 13, 2022
A vulnerability was found in openstack-cinder releases up to and including Queens, allowing newly... High Unreviewed
CVE-2017-15139 was published May 13, 2022
Ansible sensitive information disclosure High
CVE-2018-16876 was published for ansible (pip) May 13, 2022
The image build process for the overcloud images in Red Hat OpenStack Platform 8.0 (Liberty)... High Unreviewed
CVE-2016-4474 was published May 13, 2022
OpenStack Ironic Exposure of Sensitive Information to an Unauthorized Actor High
CVE-2016-4985 was published for ironic (pip) May 13, 2022
In the Federation component of OpenStack Keystone before 11.0.4, 12.0.0, and 13.0.0, an... Moderate Unreviewed
CVE-2018-14432 was published May 13, 2022
An accessibility flaw was found in the OpenStack Workflow (mistral) service where a service log... Moderate Unreviewed
CVE-2017-2622 was published May 13, 2022
The DPDK vhost-user interface does not check to verify that all the requested guest physical... Moderate Unreviewed
CVE-2018-1059 was published May 13, 2022
puppet-swift before versions 8.2.1, 9.4.4 is vulnerable to an information-disclosure in Red Hat... Moderate Unreviewed
CVE-2016-9590 was published May 13, 2022
The ajaxswing webui in the management server in Symantec Critical System Protection (SCSP) 5.2.9... Moderate Unreviewed
CVE-2014-9225 was published May 13, 2022
EMC RSA Web Threat Detection before 5.1 SP1 stores a cleartext AnnoDB password in a configuration... Moderate Unreviewed
CVE-2015-4547 was published May 13, 2022
The vmci_transport_dgram_dequeue function in net/vmw_vsock/vmci_transport.c in the Linux kernel... Moderate Unreviewed
CVE-2013-3236 was published May 13, 2022
Information Disclosure vulnerability in the Dashboard and Error Pages in Trend Micro Control... High Unreviewed
CVE-2016-6220 was published May 13, 2022
The AT&T U-verse 9.2.2h0d83 firmware for the Arris NVG589, NVG599, and unspecified other devices,... High Unreviewed
CVE-2017-10793 was published May 13, 2022
60cycleCMS 2.5.2 allows remote attackers to obtain sensitive information via a direct request to... Moderate Unreviewed
CVE-2011-3696 was published May 13, 2022
Cloud Foundry Runtime cf-release before 216, UAA before 2.5.2, and Pivotal Cloud Foundry (PCF)... High Unreviewed
CVE-2015-5173 was published May 13, 2022
Microsoft Outlook 2007 SP3, Outlook 2010 SP2, Outlook 2013 SP1, Outlook 2013 RT SP1, and Outlook... Moderate Unreviewed
CVE-2017-8572 was published May 13, 2022
Microsoft Outlook 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT does not properly expand metadata... Moderate Unreviewed
CVE-2013-3905 was published May 13, 2022
Incorrect Access Control in FailOverHelperServlet in Zoho ManageEngine Netflow Analyzer before... High Unreviewed
CVE-2018-12997 was published May 13, 2022
qt5-qtwebkit before 5.4 records private browsing URLs to its favicon database, WebpageIcons.db. Moderate Unreviewed
CVE-2015-8079 was published May 13, 2022
The RESTful control interface (aka RAPI or ganeti-rapi) in Ganeti before 2.9.7, 2.10.x before 2... High Unreviewed
CVE-2015-7945 was published May 13, 2022
Adobe Reader and Acrobat 10.x before 10.1.15 and 11.x before 11.0.12, Acrobat and Acrobat Reader... Moderate Unreviewed
CVE-2015-5088 was published May 13, 2022
Adobe Reader and Acrobat 10.x before 10.1.15 and 11.x before 11.0.12, Acrobat and Acrobat Reader... Moderate Unreviewed
CVE-2015-5089 was published May 13, 2022
Adobe Reader and Acrobat 10.x before 10.1.15 and 11.x before 11.0.12, Acrobat and Acrobat Reader... Moderate Unreviewed
CVE-2015-5092 was published May 13, 2022
Adobe Reader and Acrobat 10.x before 10.1.15 and 11.x before 11.0.12, Acrobat and Acrobat Reader... Moderate Unreviewed
CVE-2015-5107 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database