GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,992
Erlang
29
GitHub Actions
16
Go
1,782
Maven
5,000+
npm
3,544
NuGet
619
pip
3,134
Pub
10
RubyGems
838
Rust
795
Swift
34
Unreviewed advisories
All unreviewed
5,000+
2,469 advisories
Filter by severity
Allowing the chrome.debugger API to run on file:// URLs in DevTools in Google Chrome prior to 69...
High
Unreviewed
CVE-2018-16081
was published
May 13, 2022
On BIG-IP 14.0.0-14.0.0.2, 13.0.0-13.1.1.1, or 12.1.0-12.1.3.7, or Enterprise Manager 3.1.1, when...
High
Unreviewed
CVE-2018-15329
was published
May 13, 2022
In BIG-IP 14.0.0-14.0.0.2 or 13.0.0-13.1.1.1 or Enterprise Manager 3.1.1, when authenticated...
High
Unreviewed
CVE-2018-15327
was published
May 13, 2022
Unauthorized access may be allowed by the SCP11 Crypto Services TA will processing commands from...
High
Unreviewed
CVE-2018-11888
was published
May 13, 2022
Missing authorization check in Apache Impala before 3.0.1 allows a Kerberos-authenticated but...
Moderate
Unreviewed
CVE-2018-11785
was published
May 13, 2022
A root privilege escalation vulnerability in the Sonus SBC 1000 / SBC 2000 / SBC SWe Lite web...
Critical
Unreviewed
CVE-2018-11541
was published
May 13, 2022
An issue was discovered in Vaultize Enterprise File Sharing 17.05.31. An attacker can exploit...
Moderate
Unreviewed
CVE-2018-10207
was published
May 13, 2022
Electrum Technologies GmbH Electrum Bitcoin Wallet version prior to version 3.0.5 contains a...
Moderate
Unreviewed
CVE-2018-1000022
was published
May 13, 2022
A malicious user with unrestricted access to the AppFormix application management platform may be...
High
Unreviewed
CVE-2018-0015
was published
May 13, 2022
Juju before 1.25.12, 2.0.x before 2.0.4, and 2.1.x before 2.1.3 uses a UNIX domain socket without...
Critical
Unreviewed
CVE-2017-9232
was published
May 13, 2022
CompuLab Intense PC and MintBox 2 devices with BIOS before 2017-05-21 do not use the CloseMnf...
High
Unreviewed
CVE-2017-8083
was published
May 13, 2022
dde-daemon, the daemon process of DDE (Deepin Desktop Environment) 15.0 through 15.3, runs with...
High
Unreviewed
CVE-2017-7622
was published
May 13, 2022
PostgreSQL versions before 9.4.13, 9.5.8 and 9.6.4 are vulnerable to authorization flaw allowing...
High
Unreviewed
CVE-2017-7548
was published
May 13, 2022
A vulnerability in the ConfD server component of Cisco Elastic Services Controllers could allow...
Moderate
Unreviewed
CVE-2017-6693
was published
May 13, 2022
A vulnerability in the role-based access control (RBAC) functionality of Cisco Prime Data Center...
Critical
Unreviewed
CVE-2017-6639
was published
May 13, 2022
A vulnerability in the web interface of Cisco Prime Collaboration Provisioning Software (prior to...
Moderate
Unreviewed
CVE-2017-6635
was published
May 13, 2022
A vulnerability in the web interface for Cisco Prime Collaboration Provisioning could allow an...
Critical
Unreviewed
CVE-2017-6622
was published
May 13, 2022
On Franklin Fueling Systems TS-550 evo 2.3.0.7332 devices, the roleDiag user, which can be...
High
Unreviewed
CVE-2017-6565
was published
May 13, 2022
A vulnerability in the debug plug-in functionality of the Cisco Unified Computing System (UCS)...
High
Unreviewed
CVE-2017-6598
was published
May 13, 2022
On Franklin Fueling Systems TS-550 evo 2.3.0.7332 devices, the Guest user, which contains the...
Moderate
Unreviewed
CVE-2017-6564
was published
May 13, 2022
Insufficient checks in the UDF subsystem in Firebird 2.5.x before 2.5.7 and 3.0.x before 3.0.2...
High
Unreviewed
CVE-2017-6369
was published
May 13, 2022
NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer handler where...
High
Unreviewed
CVE-2017-6251
was published
May 13, 2022
lxc-user-nic in Linux Containers (LXC) allows local users with a lxc-usernet allocation to create...
Low
Unreviewed
CVE-2017-5985
was published
May 13, 2022
Firejail before 0.9.44.4 and 0.9.38.x LTS before 0.9.38.8 LTS does not consider the .Xauthority...
High
Unreviewed
CVE-2017-5180
was published
May 13, 2022
An issue was discovered on SendQuick Entera and Avera devices before 2HF16. The application...
High
Unreviewed
CVE-2017-5136
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API