Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+

387 advisories

Loading
An issue was discovered in versions earlier than 1.3.2 for Polycom RealPresence Debut where the... Low Unreviewed
CVE-2018-10947 was published May 24, 2022
Insufficient input validation vulnerability in subsystem for Intel(R) AMT before versions 11.8.65... Low Unreviewed
CVE-2019-0094 was published May 24, 2022
Docker Engine before 1.8.3 and CS Docker Engine before 1.6.2-CS7 do not use a globally unique... Low Unreviewed
CVE-2014-8178 was published May 17, 2022
The DRDA Services component in IBM DB2 UDB 9.5 before FP6a allows remote authenticated users to... Low Unreviewed
CVE-2010-3732 was published May 17, 2022
The DoCommand function in jhead.c in Matthias Wandel jhead 2.84 and earlier allows local users to... Low Unreviewed
CVE-2008-4640 was published May 17, 2022
JBoss Enterprise Service Bus (ESB) before 4.7 CP02 in JBoss Enterprise SOA Platform before 5.0.2... Low Unreviewed
CVE-2010-2474 was published May 17, 2022
** DISPUTED ** The standardise function in Anibal Monsalve Salazar sSMTP 2.61 and 2.62 allows... Low Unreviewed
CVE-2008-7258 was published May 17, 2022
IBM Lotus Notes Traveler before 8.5.1.2 allows remote authenticated users to cause a denial of... Low Unreviewed
CVE-2010-4548 was published May 17, 2022
The org.jboss.remoting.transport.bisocket.BisocketServerInvoker$SecondaryServerSocketThread.run... Low Unreviewed
CVE-2010-3862 was published May 17, 2022
IBM Lotus Quickr 8.1 before 8.1.0.2 services for Lotus Domino does not properly handle URLs that... Low Unreviewed
CVE-2008-7286 was published May 17, 2022
Microsoft Windows Azure Software Development Kit (SDK) 1.3.x before 1.3.20121.1237, when Full IIS... Low Unreviewed
CVE-2011-1068 was published May 17, 2022
acpid.c in acpid before 2.0.9 does not properly handle a situation in which a process has... Low Unreviewed
CVE-2011-1159 was published May 17, 2022
The ap_pregsub function in server/util.c in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x... Low Unreviewed
CVE-2011-4415 was published May 17, 2022
The insert_module function in runtime/staprun/staprun_funcs.c in the systemtap runtime tool ... Low Unreviewed
CVE-2011-2503 was published May 17, 2022
OpenStack Nova Scheduler denial of service through scheduler_hints Low
CVE-2012-3371 was published for Nova (pip) May 17, 2022
The ProcRenderAddGlyphs function in the Render extension (render/render.c) in X.Org xserver 1.7.7... Low Unreviewed
CVE-2010-4819 was published May 17, 2022
The main function in tools/hv/hv_kvp_daemon.c in hypervkvpd, as distributed in the Linux kernel... Low Unreviewed
CVE-2012-2669 was published May 17, 2022
Identity Services in Apple iOS before 6.1 does not properly handle validation failures of AppleID... Low Unreviewed
CVE-2013-0963 was published May 17, 2022
The Subscriptions feature in Open-Xchange Server before 6.20.7 rev14, 6.22.0 before rev13, and 6... Low Unreviewed
CVE-2013-1648 was published May 17, 2022
drivers/hid/hid-sensor-hub.c in the Human Interface Device (HID) subsystem in the Linux kernel... Low Unreviewed
CVE-2013-2898 was published May 17, 2022
The API before 2.1 in OpenStack Image Registry and Delivery Service (Glance) makes it easier for... Low Unreviewed
CVE-2013-4354 was published May 17, 2022
The get_parent_resource function in repos.c in mod_dav_svn Apache HTTPD server module in... Low Unreviewed
CVE-2013-4558 was published May 17, 2022
The mobile-upload feature in Esri ArcGIS for Server 10.1 through 10.2 allows remote authenticated... Low Unreviewed
CVE-2013-5221 was published May 17, 2022
CRLF injection vulnerability in Cybozu Garoon 3.1 through 3.5 SP5, when Phone Messages forwarding... Low Unreviewed
CVE-2013-6003 was published May 17, 2022
The dispatch_discard_io function in drivers/block/xen-blkback/blkback.c in the Xen blkback... Low Unreviewed
CVE-2013-2140 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database