Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,504
Maven
5,000+
npm
4,149
NuGet
735
pip
3,949
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

3,377 advisories

Loading
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile... Critical Unreviewed
CVE-2015-9152 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and... Critical Unreviewed
CVE-2015-9209 was published May 14, 2022
Unspecified vulnerability in the MySQL Connector component 2.1.3 and earlier and 2.0.4 and... Moderate Unreviewed
CVE-2016-5598 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and... Critical Unreviewed
CVE-2016-10472 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 425... Critical Unreviewed
CVE-2016-10440 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile... Critical Unreviewed
CVE-2016-10442 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile,... High Unreviewed
CVE-2016-10418 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile,... Critical Unreviewed
CVE-2016-10444 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile... Critical Unreviewed
CVE-2016-10462 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Small Cell SoC,... Critical Unreviewed
CVE-2016-10422 was published May 14, 2022
In all Qualcomm products with Android releases from CAF using the Linux kernel, the UE can send... Critical Unreviewed
CVE-2015-9064 was published May 14, 2022
In Garden versions 0.22.0-0.329.0, a vulnerability has been discovered in the garden-linux nstar... High Unreviewed
CVE-2015-5350 was published May 14, 2022
libvirt before 2.0.0 improperly disables password checking when the password on a VNC server is... Critical Unreviewed
CVE-2016-5008 was published May 14, 2022
A Remote Arbitrary Command Execution vulnerability in HPE StoreVirtual 4000 Storage and... High Unreviewed
CVE-2016-8529 was published May 14, 2022
The open_by_handle_at function in vzkernel before 042stab090.5 in the OpenVZ modification for the... Moderate Unreviewed
CVE-2014-3519 was published May 14, 2022
The OG Subgroups module, when used with the Open Atrium module 7.x-2.x before 7.x-2.26 for Drupal... High Unreviewed
CVE-2014-9504 was published May 14, 2022
install/index.php in Exponent CMS 2.3.9 allows remote attackers to execute arbitrary commands via... Critical Unreviewed
CVE-2016-7565 was published May 14, 2022
BMC Track-It! 11.4 before Hotfix 3 exposes an unauthenticated .NET remoting file storage service ... Critical Unreviewed
CVE-2016-6598 was published May 14, 2022
IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.3, and 3.5 before 3.5.0.1... Moderate Unreviewed
CVE-2016-0342 was published May 14, 2022
Jolla Sailfish OS before 1.1.2.16 allows remote attackers to spoof phone numbers and trigger... High Unreviewed
CVE-2015-3888 was published May 14, 2022
The OAuth extension for MediaWiki improperly negotiates a new client token only over Special... High Unreviewed
CVE-2015-8008 was published May 14, 2022
Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE... High Unreviewed
CVE-2011-3544 was published May 14, 2022
An elevation of privilege vulnerability in the kernel networking subsystem could enable a local... High Unreviewed
CVE-2016-8399 was published May 14, 2022
The TCP stack in the Linux kernel before 4.8.10 mishandles skb truncation, which allows local... Moderate Unreviewed
CVE-2016-8645 was published May 14, 2022
The x86_decode_insn function in arch/x86/kvm/emulate.c in the Linux kernel before 4.8.7, when KVM... Moderate Unreviewed
CVE-2016-8630 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database