Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,383 advisories

Loading
Kromtech MacKeeper 3.20.4 suffers from a root privilege escalation vulnerability through its `com... Critical Unreviewed
CVE-2018-10171 was published May 24, 2022
Kentico 11 through 12 lets attackers upload and explore files without authentication via the... Critical Unreviewed
CVE-2019-12102 was published May 24, 2022
A vulnerability was found in libvirt >= 4.1.0 in the virtlockd-admin.socket and virtlogd-admin... High Unreviewed
CVE-2019-10132 was published May 24, 2022
OpenText Brava! Enterprise and Brava! Server 7.5 through 16.4 configure excessive permissions by... High Unreviewed
CVE-2019-12270 was published May 24, 2022
Improper directory permissions in Intel(R) ACU Wizard version 12.0.0.129 and earlier may allow an... High Unreviewed
CVE-2019-0138 was published May 24, 2022
Improper directory permissions in the installer for Intel(R) Quartus(R) software may allow an... High Unreviewed
CVE-2019-0171 was published May 24, 2022
Improper directory permissions in the installer for Intel(R) PROSet/Wireless WiFi Software... High Unreviewed
CVE-2018-3701 was published May 24, 2022
Yeelight Smart AI Speaker 3.3.10_0074 devices have improper access control over the UART... High Unreviewed
CVE-2018-20007 was published May 24, 2022
A Local Privilege Escalation in libqcocoa.dylib in Foxit Reader 3.1.0.0111 on macOS has been... High Unreviewed
CVE-2019-8342 was published May 24, 2022
An exploitable firmware update vulnerability exists in the NT9665X Chipset firmware running on... High Unreviewed
CVE-2018-4028 was published May 24, 2022
An exploitable Permission Assignment vulnerability exists in the ACEManager EmbeddedAceSet_Task... High Unreviewed
CVE-2018-4073 was published May 24, 2022
An exploitable Permission Assignment vulnerability exists in the ACEManager EmbeddedAceSet_Task... High Unreviewed
CVE-2018-4072 was published May 24, 2022
Zoho ManageEngine ADManager Plus 6.6 Build 6657 allows local users to gain privileges (after a... High Unreviewed
CVE-2018-19374 was published May 24, 2022
The ASUS ZenFone 3 Max Android device with a build fingerprint of asus/US_Phone/ASUS_X008_1:7.0... High Unreviewed
CVE-2018-14980 was published May 24, 2022
Publify has Improper Access Controls Moderate
CVE-2022-1810 was published for publify_core (RubyGems) May 24, 2022
JFrog Artifactory prior to version 7.28.0 and 6.23.38, is vulnerable to Broken Access Control,... Moderate Unreviewed
CVE-2021-41834 was published May 24, 2022
Sensitive information disclosure due to insecure folder permissions. The following products are... High Unreviewed
CVE-2022-30990 was published May 19, 2022
An issue was discovered in the DBI module through 1.643 for Perl. DBD::File drivers can open... High Unreviewed
CVE-2014-10402 was published May 17, 2022
The developer-tools process in Google Chrome before 25.0.1364.97 on Windows and Linux, and before... High Unreviewed
CVE-2013-0887 was published May 17, 2022
Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, does... High Unreviewed
CVE-2013-0885 was published May 14, 2022
In SonicWall SonicOS, administrators without full permissions can download imported certificates.... Moderate Unreviewed
CVE-2018-9867 was published May 13, 2022
The AMD Ryzen and Ryzen Pro processor chips have insufficient access control for the Secure... Critical Unreviewed
CVE-2018-8932 was published May 13, 2022
The AMD EPYC Server processor chips have insufficient access control for protected memory regions... Critical Unreviewed
CVE-2018-8933 was published May 13, 2022
The AMD Ryzen, Ryzen Pro, and Ryzen Mobile processor chips have insufficient access control for... Critical Unreviewed
CVE-2018-8931 was published May 13, 2022
Anne-AL00 Huawei phones with versions earlier than 8.0.0.151(C00) have an information leak... Low Unreviewed
CVE-2018-7924 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database