GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,904
Composer 4,871
Erlang 37
GitHub Actions 36
Go 2,504
Maven 5,949
npm 4,149
NuGet 735
pip 3,949
Pub 12
RubyGems 945
Rust 1,025
Swift 39

Unreviewed advisories

All unreviewed 269,795

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,260 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

OpenFlow version 1.0 onwards contains a Denial of Service and Improper authorization... Critical Unreviewed

CVE-2018-1000155 was published May 13, 2022

** DISPUTED ** An issue was discovered in SMA Solar Technology products. A secondary... Critical Unreviewed

CVE-2017-9855 was published May 13, 2022

An Improper Authorization issue was discovered in OSIsoft PI Integrator for Business Analytics... Critical Unreviewed

CVE-2017-9653 was published May 13, 2022

BigTree CMS through 4.2.18 does not prevent a user from deleting their own account. This could... Moderate Unreviewed

CVE-2017-9378 was published May 13, 2022

Atlassian Bamboo 5.x before 5.15.7 and 6.x before 6.0.1 did not correctly check if a user... High Unreviewed

CVE-2017-8907 was published May 13, 2022

Windows Error Reporting (WER) in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1,... High Unreviewed

CVE-2017-8633 was published May 13, 2022

Improper authorization involving a fuse in TrustZone in snapdragon automobile, snapdragon mobile... High Unreviewed

CVE-2017-8276 was published May 13, 2022

FusionSphere V100R006C00SPC102(NFV) has an incorrect authorization vulnerability. An... Moderate Unreviewed

CVE-2017-8196 was published May 13, 2022

FusionSphere OpenStack V100R006C00 has an improper authorization vulnerability. Due to improper... High Unreviewed

CVE-2017-8192 was published May 13, 2022

Red Hat 3scale (aka RH-3scale) API Management Platform (AMP) before 2.0.0 would permit creation... Critical Unreviewed

CVE-2017-7512 was published May 13, 2022

In WordPress before 4.7.3 (wp-admin/plugins.php), unintended files can be deleted by... Moderate Unreviewed

CVE-2017-6816 was published May 13, 2022

A vulnerability in certain filtering mechanisms of access control lists (ACLs) for Cisco ASR 5000... High Unreviewed

CVE-2017-6672 was published May 13, 2022

An issue was discovered in network-manager-applet (aka network-manager-gnome) in Ubuntu 12.04 LTS... Moderate Unreviewed

CVE-2017-6590 was published May 13, 2022

VMware Workstation Pro/Player contains an insecure library loading vulnerability via ALSA sound... High Unreviewed

CVE-2017-4915 was published May 13, 2022

The VMware V4H and V4PA desktop agents (6.x before 6.5.1) contain a privilege escalation... High Unreviewed

CVE-2017-4946 was published May 13, 2022

In BlackBerry QNX Software Development Platform (SDP) 6.6.0, an elevation of privilege... High Unreviewed

CVE-2017-3891 was published May 13, 2022

A vulnerability in the role-based resource checking functionality of Cisco Unified Computing... Moderate Unreviewed

CVE-2017-3817 was published May 13, 2022

A vulnerability in the web-based GUI of Cisco UCS Director 6.0.0.0 and 6.0.0.1 could allow an... High Unreviewed

CVE-2017-3801 was published May 13, 2022

On Juniper Networks Junos Space versions prior to 16.1R1, due to an insufficient authorization... High Unreviewed

CVE-2017-2306 was published May 13, 2022

On Juniper Networks Junos Space versions prior to 16.1R1, due to an insufficient authorization... High Unreviewed

CVE-2017-2305 was published May 13, 2022

Memory write mechanism in NCR S1 Dispenser controller before firmware version 0x0156 allows an... High Unreviewed

CVE-2017-17668 was published May 13, 2022

Because of insufficient authorization checks it is possible for any authenticated user to change... Moderate Unreviewed

CVE-2017-17708 was published May 13, 2022

Huawei iBMC V200R002C10; V200R002C20; V200R002C30 have an improper authorization vulnerability.... Moderate Unreviewed

CVE-2017-17323 was published May 13, 2022

IBM Jazz Team Server affecting the following IBM Rational Products: Collaborative Lifecycle... Moderate Unreviewed

CVE-2017-1700 was published May 13, 2022

Splunk Web in Splunk Enterprise 7.0.x before 7.0.0.1, 6.6.x before 6.6.3.2, 6.5.x before 6.5.6, 6... Critical Unreviewed

CVE-2017-17067 was published May 13, 2022

Previous 1…76…91 Next

Previous 1 2 … 74 75 76 77 78 … 90 91 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,260 advisories