Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+

12,432 advisories

Loading
The pa_rtp_recv function in modules/rtp/rtp.c in the module-rtp-recv module in PulseAudio 5.0 and... Low Unreviewed
CVE-2014-3970 was published May 17, 2022
In ActivityManager, there is a possible disclosure of installed packages due to a missing... Low Unreviewed
CVE-2022-20315 was published Aug 13, 2022
Firejail allows local users to truncate /etc/resolv.conf via a chroot command to /. Low Unreviewed
CVE-2016-10118 was published May 17, 2022
Siri in Apple iOS before 7.1.2 allows physically proximate attackers to bypass an intended lock... Low Unreviewed
CVE-2014-1351 was published May 17, 2022
slapd in OpenLDAP before 2.4.30 allows remote attackers to cause a denial of service (assertion... Low Unreviewed
CVE-2012-1164 was published May 17, 2022
Xen 4.0 through 4.3.x, when using AVX or LWP capable CPUs, does not properly clear previous data... Low Unreviewed
CVE-2013-1442 was published May 17, 2022
Cybozu KUNAI for Android 3.0.4 to 3.0.5.1 allow remote attackers to obtain log information... Low Unreviewed
CVE-2017-2109 was published May 17, 2022
NetworkExtension in Apple iOS before 8.3 stores credentials in VPN configuration logs, which... Low Unreviewed
CVE-2015-1109 was published May 17, 2022
A too small set of random characters being used for encryption in Nextcloud Server 18.0.4 allowed... Low Unreviewed
CVE-2020-8173 was published May 24, 2022
An issue was discovered in certain Apple products. iOS before 10.1 is affected. macOS before 10... Low Unreviewed
CVE-2016-4670 was published May 17, 2022
A vulnerability has been identified in tasks, backend object generated for handling any action... Low Unreviewed
CVE-2016-0202 was published May 17, 2022
Unspecified vulnerability in Oracle MySQL Server 5.6.22 and earlier allows remote authenticated... Low Unreviewed
CVE-2015-2566 was published May 17, 2022
A Incorrect Default Permissions vulnerability in the packaging of cups of SUSE Linux Enterprise... Low Unreviewed
CVE-2021-25317 was published May 24, 2022
A Insecure Temporary File vulnerability in s390-tools of SUSE Linux Enterprise Server 12-SP5,... Low Unreviewed
CVE-2021-25316 was published May 24, 2022
Unspecified vulnerability in Oracle MySQL Server 5.6.19 and earlier allows remote authenticated... Low Unreviewed
CVE-2014-6474 was published May 17, 2022
IBM Security Verify Identity Manager 10.0 could allow a privileged user to upload a malicious... Low Unreviewed
CVE-2022-22450 was published Jul 15, 2022
An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0... Low Unreviewed
CVE-2022-35900 was published Jul 16, 2022
Cybozu Office 9.0.0 through 10.4.0 allows remote attackers to conduct a "reflected file download"... Low Unreviewed
CVE-2016-4874 was published May 17, 2022
The Python interpreter in Cisco NX-OS 6.2(8a) on Nexus 7000 devices allows local users to bypass... Low Unreviewed
CVE-2015-4231 was published May 17, 2022
In AlarmManagerService, there is a possible way to determine whether an app is installed, without... Low Unreviewed
CVE-2022-20307 was published Aug 13, 2022
In PackageInstaller, there is a possible way to determine whether an app is installed, without... Low Unreviewed
CVE-2022-20309 was published Aug 13, 2022
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite... Low Unreviewed
CVE-2015-2660 was published May 17, 2022
IBM Maximo Asset Management 7.1, 7.5, and 7.6 could allow a local attacker to obtain sensitive... Low Unreviewed
CVE-2017-1124 was published May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in EMC Documentum WebTop 6.7SP1 before P31, 6... Low Unreviewed
CVE-2015-0551 was published May 17, 2022
Notification Center in Apple iOS before 9.1 mishandles changes to "Show on Lock Screen" settings,... Low Unreviewed
CVE-2015-7000 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database