GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,094
Erlang
29
GitHub Actions
19
Go
1,920
Maven
5,000+
npm
3,648
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
822
Swift
35
Unreviewed advisories
All unreviewed
5,000+
662 advisories
Filter by severity
net/netfilter/xt_osf.c in the Linux kernel through 4.14.4 does not require the CAP_NET_ADMIN...
High
Unreviewed
CVE-2017-17450
was published
May 13, 2022
The IP2Location Country Blocker WordPress plugin before 2.26.5 does not have authorisation and...
High
Unreviewed
CVE-2021-25095
was published
Feb 8, 2022
A vulnerability in the Start Before Logon (SBL) module of Cisco AnyConnect Secure Mobility Client...
High
Unreviewed
CVE-2017-3813
was published
May 13, 2022
An issue was discovered on SendQuick Entera and Avera devices before 2HF16. The application...
High
Unreviewed
CVE-2017-5136
was published
May 13, 2022
In EMC VNX2 versions prior to OE for File 8.1.9.211 and VNX1 versions prior to OE for File 7.1.80...
High
Unreviewed
CVE-2017-4985
was published
May 13, 2022
Firejail before 0.9.44.4 and 0.9.38.x LTS before 0.9.38.8 LTS does not consider the .Xauthority...
High
Unreviewed
CVE-2017-5180
was published
May 13, 2022
dde-daemon, the daemon process of DDE (Deepin Desktop Environment) 15.0 through 15.3, runs with...
High
Unreviewed
CVE-2017-7622
was published
May 13, 2022
NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer handler where...
High
Unreviewed
CVE-2017-6251
was published
May 13, 2022
Insufficient checks in the UDF subsystem in Firebird 2.5.x before 2.5.7 and 3.0.x before 3.0.2...
High
Unreviewed
CVE-2017-6369
was published
May 13, 2022
A vulnerability in the debug plug-in functionality of the Cisco Unified Computing System (UCS)...
High
Unreviewed
CVE-2017-6598
was published
May 13, 2022
On Franklin Fueling Systems TS-550 evo 2.3.0.7332 devices, the roleDiag user, which can be...
High
Unreviewed
CVE-2017-6565
was published
May 13, 2022
CompuLab Intense PC and MintBox 2 devices with BIOS before 2017-05-21 do not use the CloseMnf...
High
Unreviewed
CVE-2017-8083
was published
May 13, 2022
A malicious user with unrestricted access to the AppFormix application management platform may be...
High
Unreviewed
CVE-2018-0015
was published
May 13, 2022
Unauthorized access may be allowed by the SCP11 Crypto Services TA will processing commands from...
High
Unreviewed
CVE-2018-11888
was published
May 13, 2022
SAP Enterprise Financial Services, versions 6.05, 6.06, 6.16, 6.17, 6.18, 8.0 (in business...
High
Unreviewed
CVE-2018-2454
was published
May 13, 2022
On BIG-IP 14.0.0-14.0.0.2, 13.0.0-13.1.1.1, or 12.1.0-12.1.3.7, or Enterprise Manager 3.1.1, when...
High
Unreviewed
CVE-2018-15329
was published
May 13, 2022
Allowing the chrome.debugger API to run on file:// URLs in DevTools in Google Chrome prior to 69...
High
Unreviewed
CVE-2018-16081
was published
May 13, 2022
goform/setReset on Orange AirBox Y858_FL_01.16_04 devices allows attackers to reset a router to...
High
Unreviewed
CVE-2018-18377
was published
May 13, 2022
In BIG-IP 14.0.0-14.0.0.2 or 13.0.0-13.1.1.1 or Enterprise Manager 3.1.1, when authenticated...
High
Unreviewed
CVE-2018-15327
was published
May 13, 2022
SAP Enterprise Financial Services, versions 6.05, 6.06, 6.16, 6.17, 6.18, 8.0 (in business...
High
Unreviewed
CVE-2018-2455
was published
May 13, 2022
SAP ERP Financials Information System (SAP_APPL 6.00, 6.02, 6.03, 6.04, 6.05, 6.06, 6.16; SAP_FIN...
High
Unreviewed
CVE-2018-2381
was published
May 13, 2022
Executing transaction WRCK in SAP R/3 Enterprise Retail (EHP6) does not perform necessary...
High
Unreviewed
CVE-2018-2436
was published
May 13, 2022
Missing authorization check in SAP HCM Fiori "People Profile" (GBX01 HR version 6.0) for an...
High
Unreviewed
CVE-2018-2461
was published
May 13, 2022
The "browser.identity.launchWebAuthFlow" function of WebExtensions is only allowed to load...
High
Unreviewed
CVE-2018-5113
was published
May 13, 2022
WebExtensions can bypass normal restrictions in some circumstances and use "browser.tabs...
High
Unreviewed
CVE-2018-5135
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API