Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,121
NuGet
735
pip
3,942
Pub
12
RubyGems
945
Rust
1,018
Swift
39
Unreviewed advisories
All unreviewed
5,000+

387 advisories

Loading
qemu/qemu_driver.c in libvirt before 6.0.0 mishandles the holding of a monitor job during a query... Low Unreviewed
CVE-2019-20485 was published May 24, 2022
In cPanel before 82.0.18, Cpanel::Rand::Get can produce a predictable series of numbers (SEC-525). Low Unreviewed
CVE-2019-20494 was published May 24, 2022
NVIDIA Virtual GPU Manager, all versions, contains a vulnerability in the vGPU plugin in which an... Low Unreviewed
CVE-2020-5959 was published May 24, 2022
Improper input validation in Intel(R) Graphics Drivers before version 26.20.100.7212 may allow an... Low Unreviewed
CVE-2020-0567 was published May 24, 2022
The Trend Micro Security 2019 (15.0.0.1163 and below) consumer family of products is vulnerable... Low Unreviewed
CVE-2019-19694 was published May 24, 2022
Huawei smart phones P10 Plus with versions earlier than 9.1.0.201(C01E75R1P12T8), earlier than 9... Low Unreviewed
CVE-2020-1872 was published May 24, 2022
Huawei HEGE-570 version 1.0.1.22(SP3); and HEGE-560, OSCA-550, OSCA-550A, OSCA-550AX, and OSCA... Low Unreviewed
CVE-2020-1855 was published May 24, 2022
E-Series SANtricity OS Controller Software version 11.60.0 is susceptible to a vulnerability... Low Unreviewed
CVE-2019-17273 was published May 24, 2022
In IXP EasyInstall 6.2.13723, it is possible to temporarily disable UAC by using the Agent... Low Unreviewed
CVE-2019-19894 was published May 24, 2022
In generateCrop of WallpaperManagerService.java, there is a possible sysui crash due to image... Low Unreviewed
CVE-2020-0004 was published May 24, 2022
An exploitable denial-of-service vulnerability exists in the Linux kernel prior to mainline 5.3.... Low Unreviewed
CVE-2019-5108 was published May 24, 2022
A consistency issue existed in deciding when to show the screen recording indicator. The issue... Low Unreviewed
CVE-2019-8793 was published May 24, 2022
An issue was discovered in Cyrus IMAP before 2.5.15, 3.0.x before 3.0.13, and 3.1.x through 3.1.8... Low Unreviewed
CVE-2019-19783 was published May 24, 2022
IBM Spectrum Protect Backup-Archive Client 7.1 and 8.1 may be vulnerable to a denial of service... Low Unreviewed
CVE-2019-4406 was published May 24, 2022
Insufficient input validation in i40e driver for Intel(R) Ethernet 700 Series Controllers... Low Unreviewed
CVE-2019-0149 was published May 24, 2022
Insufficient input validation in Kernel Mode module for Intel(R) Graphics Driver before version... Low Unreviewed
CVE-2019-11089 was published May 24, 2022
IBM Cloud Orchestrator 2.4 through 2.4.0.5 and 2.5 through 2.5.0.9 contain APIs that could be... Low Unreviewed
CVE-2019-4394 was published May 24, 2022
base_sock_create in drivers/isdn/mISDN/socket.c in the AF_ISDN network module in the Linux kernel... Low Unreviewed
CVE-2019-17055 was published May 24, 2022
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 Admin console is vulnerable to a Client... Low Unreviewed
CVE-2019-4271 was published May 24, 2022
Incorrect scoping of kill operations in MongoDB Server's packaged SysV init scripts allow users... Low Unreviewed
CVE-2019-2389 was published May 24, 2022
cPanel before 62.0.17 allows file overwrite when renaming an account (SEC-219). Low Unreviewed
CVE-2017-18458 was published May 24, 2022
cPanel before 68.0.15 allows collisions because PostgreSQL databases can be assigned to multiple... Low Unreviewed
CVE-2017-18392 was published May 24, 2022
cPanel before 71.9980.37 allows arbitrary file-unlink operations via the cPAddons moderation... Low Unreviewed
CVE-2018-20897 was published May 24, 2022
cPanel before 74.0.0 allows file-rename operations during account renames (SEC-442). Low Unreviewed
CVE-2018-20893 was published May 24, 2022
cPanel before 74.0.8 allows local users to disable the ClamAV daemon (SEC-409). Low Unreviewed
CVE-2018-20873 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database