Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

3,350 advisories

Loading
The check_rpcsec_auth function in kadmin/server/kadm_rpc_svc.c in kadmind in MIT Kerberos 5 (aka... Moderate Unreviewed
CVE-2014-9422 was published May 13, 2022
The OpenBlob function in blob.c in GraphicsMagick before 1.3.24 and ImageMagick allows remote... Critical Unreviewed
CVE-2016-5118 was published May 13, 2022
The cert_revoke command in FreeIPA does not check for the "revoke certificate" permission, which... Moderate Unreviewed
CVE-2016-5404 was published May 13, 2022
The net/http package in Go through 1.6 does not attempt to address RFC 3875 section 4.1.18... High Unreviewed
CVE-2016-5386 was published May 13, 2022
The filesystem layer in the Linux kernel before 4.5.5 proceeds with post-rename operations after... Moderate Unreviewed
CVE-2016-6198 was published May 13, 2022
Jenkins allows Bypass of Access Restrictions Moderate
CVE-2015-5325 was published for org.jenkins-ci.main:jenkins-core (Maven) May 13, 2022
The UNC implementation in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server... High Unreviewed
CVE-2015-0008 was published May 13, 2022
Heap-based buffer overflow in the KeyView PDF filter in IBM Domino 8.5.x before 8.5.3 FP6 IF13... High Unreviewed
CVE-2016-0278 was published May 13, 2022
Heap-based buffer overflow in the KeyView PDF filter in IBM Domino 8.5.x before 8.5.3 FP6 IF13... High Unreviewed
CVE-2016-0277 was published May 13, 2022
The Java Console in IBM Domino 8.5.x before 8.5.3 FP6 IF13 and 9.x before 9.0.1 FP6, when a... High Unreviewed
CVE-2016-0304 was published May 13, 2022
Heap-based buffer overflow in the KeyView PDF filter in IBM Domino 8.5.x before 8.5.3 FP6 IF13... High Unreviewed
CVE-2016-0279 was published May 13, 2022
A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, adjacent attacker to... High Unreviewed
CVE-2019-1647 was published May 13, 2022
Improper access control vulnerability in Synology Drive before 1.0.2-10275 allows remote... Moderate Unreviewed
CVE-2018-8922 was published May 13, 2022
All versions up to ZXINOS-RESV1.01.43 of the ZTE ZXIN10 product European region are impacted by... Critical Unreviewed
CVE-2018-7364 was published May 13, 2022
All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by improper access control... High Unreviewed
CVE-2018-7362 was published May 13, 2022
This vulnerability allows local attackers to escalate privileges on vulnerable installations of... High Unreviewed
CVE-2018-1168 was published May 13, 2022
If an attacker has physical access to the VGo Robot (Versions 3.0.3.52164 and 3.0.3.53662. Prior... High Unreviewed
CVE-2018-17931 was published May 13, 2022
WebAccess Versions 8.3.2 and prior. During installation, the application installer disables user... High Unreviewed
CVE-2018-17908 was published May 13, 2022
A vulnerability in the per-user-override feature of Cisco Adaptive Security Appliance (ASA)... Moderate Unreviewed
CVE-2018-15398 was published May 13, 2022
Medtronic N'Vision Clinician Programmer 8840 N'Vision Clinician Programmer, all versions, and... Moderate Unreviewed
CVE-2018-10631 was published May 13, 2022
A vulnerability in Cisco Webex Teams, formerly Cisco Spark, could allow an authenticated, remote... High Unreviewed
CVE-2018-0436 was published May 13, 2022
An error was found in the permission model used by X-Pack Alerting 5.0.0 to 5.6.0 whereby users... High Unreviewed
CVE-2017-8448 was published May 13, 2022
An error was found in the X-Pack Security 5.3.0 to 5.5.2 privilege enforcement. If a user has... Moderate Unreviewed
CVE-2017-8447 was published May 13, 2022
Elastic X-Pack Security versions 5.0.0 to 5.4.0 contain a privilege escalation bug in the run_as... High Unreviewed
CVE-2017-8438 was published May 13, 2022
An Improper Access Control issue was discovered in Schweitzer Engineering Laboratories (SEL) SEL... Critical Unreviewed
CVE-2017-7928 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database