Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,386
Erlang
33
GitHub Actions
22
Go
2,141
Maven
5,000+
npm
3,803
NuGet
687
pip
3,480
Pub
12
RubyGems
897
Rust
898
Swift
38
Unreviewed advisories
All unreviewed
5,000+

868 advisories

Loading
SAP ERP Financials Information System (SAP_APPL 6.00, 6.02, 6.03, 6.04, 6.05, 6.06, 6.16; SAP_FIN... High Unreviewed
CVE-2018-2381 was published May 13, 2022
goform/setReset on Orange AirBox Y858_FL_01.16_04 devices allows attackers to reset a router to... High Unreviewed
CVE-2018-18377 was published May 13, 2022
Allowing the chrome.debugger API to run on file:// URLs in DevTools in Google Chrome prior to 69... High Unreviewed
CVE-2018-16081 was published May 13, 2022
In BIG-IP 14.0.0-14.0.0.2 or 13.0.0-13.1.1.1 or Enterprise Manager 3.1.1, when authenticated... High Unreviewed
CVE-2018-15327 was published May 13, 2022
On BIG-IP 14.0.0-14.0.0.2, 13.0.0-13.1.1.1, or 12.1.0-12.1.3.7, or Enterprise Manager 3.1.1, when... High Unreviewed
CVE-2018-15329 was published May 13, 2022
Unauthorized access may be allowed by the SCP11 Crypto Services TA will processing commands from... High Unreviewed
CVE-2018-11888 was published May 13, 2022
A malicious user with unrestricted access to the AppFormix application management platform may be... High Unreviewed
CVE-2018-0015 was published May 13, 2022
CompuLab Intense PC and MintBox 2 devices with BIOS before 2017-05-21 do not use the CloseMnf... High Unreviewed
CVE-2017-8083 was published May 13, 2022
dde-daemon, the daemon process of DDE (Deepin Desktop Environment) 15.0 through 15.3, runs with... High Unreviewed
CVE-2017-7622 was published May 13, 2022
PostgreSQL versions before 9.4.13, 9.5.8 and 9.6.4 are vulnerable to authorization flaw allowing... High Unreviewed
CVE-2017-7548 was published May 13, 2022
A vulnerability in the debug plug-in functionality of the Cisco Unified Computing System (UCS)... High Unreviewed
CVE-2017-6598 was published May 13, 2022
On Franklin Fueling Systems TS-550 evo 2.3.0.7332 devices, the roleDiag user, which can be... High Unreviewed
CVE-2017-6565 was published May 13, 2022
Insufficient checks in the UDF subsystem in Firebird 2.5.x before 2.5.7 and 3.0.x before 3.0.2... High Unreviewed
CVE-2017-6369 was published May 13, 2022
NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer handler where... High Unreviewed
CVE-2017-6251 was published May 13, 2022
Firejail before 0.9.44.4 and 0.9.38.x LTS before 0.9.38.8 LTS does not consider the .Xauthority... High Unreviewed
CVE-2017-5180 was published May 13, 2022
An issue was discovered on SendQuick Entera and Avera devices before 2HF16. The application... High Unreviewed
CVE-2017-5136 was published May 13, 2022
In EMC VNX2 versions prior to OE for File 8.1.9.211 and VNX1 versions prior to OE for File 7.1.80... High Unreviewed
CVE-2017-4985 was published May 13, 2022
A vulnerability in the Start Before Logon (SBL) module of Cisco AnyConnect Secure Mobility Client... High Unreviewed
CVE-2017-3813 was published May 13, 2022
While accessing SafeSwitch services, third party can manipulate a given device and perform... High Unreviewed
CVE-2017-18312 was published May 13, 2022
In Octopus Deploy before 4.1.3, the machine update process doesn't check that the user has access... High Unreviewed
CVE-2017-17665 was published May 13, 2022
Due to missing authorization checks, any authenticated user is able to list, upload, or delete... High Unreviewed
CVE-2017-17707 was published May 13, 2022
net/netfilter/nfnetlink_cthelper.c in the Linux kernel through 4.14.4 does not require the... High Unreviewed
CVE-2017-17448 was published May 13, 2022
net/netfilter/xt_osf.c in the Linux kernel through 4.14.4 does not require the CAP_NET_ADMIN... High Unreviewed
CVE-2017-17450 was published May 13, 2022
In the Pixel 2 bootloader, there is a missing permission check which bypasses carrier bootloader... High Unreviewed
CVE-2017-13247 was published May 13, 2022
An issue was discovered in heinekingmedia StashCat through 1.7.5 for Android, through 0.0.80w for... High Unreviewed
CVE-2017-11135 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database