Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
49
GitHub Actions
49
Go
3,436
Maven
5,000+
npm
5,000+
NuGet
883
pip
4,694
Pub
13
RubyGems
1,029
Rust
1,212
Swift
53
Unreviewed advisories
All unreviewed
5,000+

13,698 advisories

Loading
Unspecified vulnerability in Oracle Java SE 7u40 and earlier and JavaFX 2.2.40 and earlier allows... Low Unreviewed
CVE-2013-5854 was published May 14, 2022
The ARM prefetch abort handler in the kernel in Apple iOS before 6.1.3 and Apple TV before 5.2.1... Low Unreviewed
CVE-2013-0978 was published May 13, 2022
The Passcode Lock implementation in Apple iOS before 6.1.3 does not properly manage the lock... Low Unreviewed
CVE-2013-0980 was published May 13, 2022
lockdownd in Lockdown in Apple iOS before 6.1.3 does not properly consider file types during the... Low Unreviewed
CVE-2013-0979 was published May 13, 2022
The command-line scripts in IBM WebSphere Commerce 6.0 through 6.0.0.11, 7.0 through 7.0.0.9, and... Low Unreviewed
CVE-2014-6211 was published May 13, 2022
IBM WebSphere Commerce 6.x through 6.0.0.11 and 7.x before 7.0.0.8 IF2 allows local users to... Low Unreviewed
CVE-2015-0200 was published May 13, 2022
A security feature bypass exists when Device Guard incorrectly validates an untrusted file, aka ... Low Unreviewed
CVE-2018-8449 was published May 13, 2022
Huawei smartphones with software Victoria-AL00 8.0.0.336a(C00) have an information leakage... Low Unreviewed
CVE-2018-7957 was published May 13, 2022
Anne-AL00 Huawei phones with versions earlier than 8.0.0.151(C00) have an information leak... Low Unreviewed
CVE-2018-7924 was published May 13, 2022
Privilege Escalation vulnerability in Microsoft Windows client (McTray.exe) in McAfee VirusScan... Low Unreviewed
CVE-2018-6674 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.4 is affected. The issue... Low Unreviewed
CVE-2018-4238 was published May 13, 2022
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel... Low Unreviewed
CVE-2018-3270 was published May 13, 2022
Vulnerability in the Hyperion BI+ component of Oracle Hyperion (subcomponent: IQR - Foundation... Low Unreviewed
CVE-2018-3184 was published May 13, 2022
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Shell: Core / Client).... Low Unreviewed
CVE-2018-3084 was published May 13, 2022
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel... Low Unreviewed
CVE-2018-2922 was published May 13, 2022
Vulnerability in the Sun ZFS Storage Appliance Kit (AK) component of Oracle Sun Systems Products... Low Unreviewed
CVE-2018-2923 was published May 13, 2022
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core)... Low Unreviewed
CVE-2018-2831 was published May 13, 2022
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security:... Low Unreviewed
CVE-2018-2767 was published May 13, 2022
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: NTPD).... Low Unreviewed
CVE-2018-2763 was published May 13, 2022
Jenkins SSH Agent Plugin exposes SSH private key password to users with permission to read the build log Low
CVE-2018-1999036 was published for org.jenkins-ci.plugins:ssh-agent (Maven) May 13, 2022
Cloudtoken Insufficiently Protects Credentials Low
CVE-2018-13390 was published for cloudtoken (pip) May 13, 2022
Insufficient access control in Kernel Mode Driver in Intel(R) Graphics Driver for Windows* before... Low Unreviewed
CVE-2018-12217 was published May 13, 2022
Unhandled exception in User Mode Driver in Intel(R) Graphics Driver for Windows* before versions... Low Unreviewed
CVE-2018-12218 was published May 13, 2022
Insufficient access control in User Mode Driver in Intel(R) Graphics Driver for Windows* before... Low Unreviewed
CVE-2018-12209 was published May 13, 2022
Jenkins z/OS Connector Plugin allows local attacker to retrieve configured password Low
CVE-2018-1000608 was published for org.jenkins-ci.plugins:zos-connector (Maven) May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database