Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,199 advisories

Loading
The BIOS in Intel NUC systems based on 6th Gen Intel Core processors prior to version SY0059 may... Low Unreviewed
CVE-2017-5686 was published May 13, 2022
The BIOS in Intel NUC systems based on 6th Gen Intel Core processors prior to version KY0045 may... Low Unreviewed
CVE-2017-5685 was published May 13, 2022
During installation of Ambari 2.4.0 through 2.4.2, Ambari Server artifacts are not created with... Critical Unreviewed
CVE-2017-5642 was published May 13, 2022
With OxygenOS before 4.0.3, when a charger is connected to a powered-off OnePlus 3 or 3T device,... Moderate Unreviewed
CVE-2017-5622 was published May 13, 2022
An issue was discovered in Pivotal PCF Tile Generator versions prior to 6.0.0. Tiles created by... High Unreviewed
CVE-2017-4975 was published May 13, 2022
MitraStar GPT-2541GNAC (HGU) 1.00(VNJ0)b1 and DSL-100HN-T1 ES_113WJY0b16 devices allow remote... High Unreviewed
CVE-2017-16522 was published May 13, 2022
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware... High Unreviewed
CVE-2017-14425 was published May 13, 2022
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware... High Unreviewed
CVE-2017-14424 was published May 13, 2022
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware... High Unreviewed
CVE-2017-14427 was published May 13, 2022
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 might create files using the default... High Unreviewed
CVE-2017-1382 was published May 13, 2022
An unspecified server utility in NoMachine before 5.3.10 on Mac OS X and Linux allows... High Unreviewed
CVE-2017-12763 was published May 13, 2022
HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) before 4.0.24 uses weak... High Unreviewed
CVE-2017-11741 was published May 13, 2022
An elevation of privilege vulnerability in the Android media framework (mediaanalytics). Product:... Critical Unreviewed
CVE-2017-0847 was published May 13, 2022
Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw, allowing a sysops to undelete pages,... Moderate Unreviewed
CVE-2017-0369 was published May 13, 2022
Synology Download Station 3.8.x before 3.8.5-3475 and 3.x before 3.5-2984 uses weak permissions ... High Unreviewed
CVE-2017-11156 was published May 13, 2022
A vulnerability in the web-based user interface (web UI) of Cisco IOS XE 16.2 could allow an... High Unreviewed
CVE-2017-12230 was published May 13, 2022
An Incorrect Default Permissions issue was discovered in AzeoTech DAQFactory versions prior to 17... High Unreviewed
CVE-2017-12699 was published May 13, 2022
An Incorrect Default Permissions issue was discovered in Schneider Electric Wonderware InduSoft... High Unreviewed
CVE-2017-7968 was published May 13, 2022
Incorrect default permissions vulnerability in synouser.conf in Synology Diskstation Manager (DSM... Moderate Unreviewed
CVE-2018-13286 was published May 13, 2022
Incorrect default permissions vulnerability in synouser.conf in Synology Router Manager (SRM)... Moderate Unreviewed
CVE-2018-13287 was published May 13, 2022
It was discovered that sos-collector does not properly set the default permissions of newly... Moderate Unreviewed
CVE-2018-14650 was published May 13, 2022
Exploiting Incorrectly Configured Access Control Security Levels vulnerability in McAfee Data... High Unreviewed
CVE-2018-6683 was published May 13, 2022
An Incorrect Default Permissions issue was discovered in OSIsoft PI Data Archive versions 2017... High Unreviewed
CVE-2018-7533 was published May 13, 2022
Google Chrome before 14.0.835.163 uses incorrect permissions for non-gallery pages, which has... Moderate Unreviewed
CVE-2011-2859 was published May 13, 2022
The drag-and-drop implementation in Google Chrome before 13.0.782.107 on Linux does not properly... Moderate Unreviewed
CVE-2011-2782 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database