Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,942
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+

387 advisories

Loading
The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in Apple iOS before 9... Low Unreviewed
CVE-2015-5869 was published May 17, 2022
The winbind_name_list_to_sid_string_list function in nsswitch/pam_winbind.c in Samba through 4.1... Low Unreviewed
CVE-2012-6150 was published May 17, 2022
Lockdown in Apple iOS before 7.1.2 does not properly verify data from activation servers, which... Low Unreviewed
CVE-2014-1360 was published May 17, 2022
The key_gc_unused_keys function in security/keys/gc.c in the Linux kernel through 4.2.6 allows... Low Unreviewed
CVE-2015-7872 was published May 17, 2022
IBM Cloud Orchestrator could allow a local authenticated attacker to cause the server to slow... Low Unreviewed
CVE-2016-0206 was published May 17, 2022
secfilter in the Samsung kernel for Android on SM-N9005 build N9005XXUGBOB6 (Note 3) and SM-G920F... Low Unreviewed
CVE-2016-2567 was published May 17, 2022
Libmenu-cache 1.0.2 insecurely uses /tmp for a socket file, allowing a local user to cause a... Low Unreviewed
CVE-2017-8933 was published May 17, 2022
A vulnerability in the package unbundle utility of Cisco IOS XE Software could allow an... Low Unreviewed
CVE-2016-6450 was published May 17, 2022
ecryptfs-setup-swap in eCryptfs does not prevent the unencrypted swap partition from activating... Low Unreviewed
CVE-2016-6224 was published May 17, 2022
The staprun runtime tool in SystemTap 1.3 does not verify that a module to unload was previously... Low Unreviewed
CVE-2010-4171 was published May 17, 2022
lnsfw1.sys 6.0.2900.5512 in Look 'n' Stop Firewall 2.06p4 and 2.07 allows local users to cause a... Low Unreviewed
CVE-2011-0652 was published May 17, 2022
The login form in Roundcube Webmail before 0.5.1 does not properly handle a correctly... Low Unreviewed
CVE-2011-1491 was published May 17, 2022
The transwiki import functionality in MediaWiki before 1.16.3 does not properly check privileges,... Low Unreviewed
CVE-2011-1580 was published May 17, 2022
smbfs in Samba 3.5.8 and earlier attempts to use (1) mount.cifs to append to the /etc/mtab file... Low Unreviewed
CVE-2011-1678 was published May 17, 2022
ncpfs 2.2.6 and earlier attempts to use (1) ncpmount to append to the /etc/mtab file and (2)... Low Unreviewed
CVE-2011-1679 was published May 17, 2022
The filter_titles function in the Smart Breadcrumb module 6.x-1.x before 6.x-1.3 for Drupal does... Low Unreviewed
CVE-2012-2705 was published May 17, 2022
The PV domain builder in Xen 4.2 and earlier does not validate the size of the kernel or ramdisk ... Low Unreviewed
CVE-2012-4544 was published May 17, 2022
Xen 4.x, when using Intel VT-d for a bus mastering capable PCI device, does not properly check... Low Unreviewed
CVE-2013-1952 was published May 17, 2022
The Enterprise Meeting Server in IBM Lotus Sametime 8.5.2 and 8.5.2.1 allows remote authenticated... Low Unreviewed
CVE-2013-3045 was published May 17, 2022
The storeFiles method in JPADriftServerBean in Red Hat JBoss Operations Network (JON) 3.1.2... Low Unreviewed
CVE-2013-4373 was published May 17, 2022
The GDS component in IBM InfoSphere Master Data Management - Collaborative Edition 10.x and 11.x... Low Unreviewed
CVE-2014-0970 was published May 17, 2022
The GDS component in IBM InfoSphere Master Data Management - Collaborative Edition 10.0 through... Low Unreviewed
CVE-2014-3009 was published May 17, 2022
The SQL engine in IBM DB2 9.5 through FP10, 9.7 through FP9a, 9.8 through FP5, 10.1 through FP4,... Low Unreviewed
CVE-2014-3095 was published May 17, 2022
CRLF injection vulnerability in IBM Tivoli Integrated Portal (TIP) 2.2.x allows remote... Low Unreviewed
CVE-2014-6151 was published May 17, 2022
IBM DB2 9.7 before FP10, 9.8 through FP5, 10.1 through FT4, and 10.5 through FP4 on Linux, UNIX,... Low Unreviewed
CVE-2014-6159 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database