Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,150
NuGet
736
pip
3,952
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,534 advisories

Loading
Certain combinations of Junos OS CLI commands and arguments have been found to be exploitable in... High Unreviewed
CVE-2016-4922 was published May 13, 2022
A command injection vulnerability exists in apply.cgi on the ASUS RP-AC52 access point, firmware... Critical Unreviewed
CVE-2016-6558 was published May 13, 2022
Command injection vulnerability in EZ-Internet in Synology DiskStation Manager (DSM) before 6.2... High Unreviewed
CVE-2017-12075 was published May 13, 2022
Command injection vulnerability in EZ-Internet in Synology Router Manager (SRM) before 1.1.6-6931... High Unreviewed
CVE-2017-12078 was published May 13, 2022
A vulnerability in the debug interface of Cisco IP Phone 8800 series could allow an authenticated... High Unreviewed
CVE-2017-12305 was published May 13, 2022
A vulnerability in the CLI of Cisco Firepower Extensible Operating System (FXOS) and NX-OS System... Moderate Unreviewed
CVE-2017-12329 was published May 13, 2022
A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local... Moderate Unreviewed
CVE-2017-12330 was published May 13, 2022
A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local... High Unreviewed
CVE-2017-12341 was published May 13, 2022
A vulnerability in certain system script files that are installed at boot time on Cisco... High Unreviewed
CVE-2017-12352 was published May 13, 2022
A command injection vulnerability in the IDP feature of Juniper Networks Junos OS on SRX series... High Unreviewed
CVE-2017-2349 was published May 13, 2022
A Command Injection issue was discovered in Satel Iberia SenNet Data Logger and Electricity... High Unreviewed
CVE-2017-6048 was published May 13, 2022
A vulnerability in the Zero Touch Provisioning (ZTP) subsystem of the Cisco SD-WAN Solution could... High Unreviewed
CVE-2018-0347 was published May 13, 2022
A vulnerability in the vManage dashboard for the configuration and management service of the... High Unreviewed
CVE-2018-0344 was published May 13, 2022
A vulnerability in the VPN subsystem configuration in the Cisco SD-WAN Solution could allow an... High Unreviewed
CVE-2018-0350 was published May 13, 2022
A vulnerability in the command-line tcpdump utility in the Cisco SD-WAN Solution could allow an... High Unreviewed
CVE-2018-0351 was published May 13, 2022
A vulnerability in the web-based management interface of Cisco Integrated Management Controller ... High Unreviewed
CVE-2018-0430 was published May 13, 2022
A vulnerability in the web-based management interface of Cisco Integrated Management Controller ... High Unreviewed
CVE-2018-0431 was published May 13, 2022
A vulnerability in the web-based management interface of Cisco Cloud Services Platform 2100 could... High Unreviewed
CVE-2018-0454 was published May 13, 2022
It was found that ceph-isci-cli package as shipped by Red Hat Ceph Storage 2 and 3 is using... Critical Unreviewed
CVE-2018-14649 was published May 13, 2022
An attacker could inject commands to delete files and/or delete the contents of a file on CX... Moderate Unreviewed
CVE-2018-19013 was published May 13, 2022
The web-based diagnostics console in Dell EMC iDRAC6 (Monolithic versions prior to 2.91 and... High Unreviewed
CVE-2018-1212 was published May 13, 2022
Dell EMC iDRAC7/iDRAC8, versions prior to 2.60.60.60, and iDRAC9 versions prior to 3.21.21.21... High Unreviewed
CVE-2018-1244 was published May 13, 2022
The version control adapters component of TIBCO Data Virtualization (formerly known as Cisco... High Unreviewed
CVE-2018-5428 was published May 13, 2022
A Command Injection issue was discovered in Nortek Linear eMerge E3 series Versions V0.32-07e and... Critical Unreviewed
CVE-2018-5439 was published May 13, 2022
A vulnerability in lack of validation of user-supplied parameters pass to XML-RPC calls on... Critical Unreviewed
CVE-2018-9866 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database