Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,170
Erlang
30
GitHub Actions
19
Go
1,981
Maven
5,000+
npm
3,700
NuGet
656
pip
3,319
Pub
11
RubyGems
882
Rust
834
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

882 advisories

Loading
In createAdminSupportIntent of DevicePolicyManagerService.java, there is a possible way to... Low Unreviewed
CVE-2021-0983 was published Dec 16, 2021
Linux kernel 2.6.33 and 2.6.34.y does not initialize the kvm_vcpu_events->interrupt.pad structure... Low Unreviewed
CVE-2010-4525 was published May 17, 2022
HP Asset Manager 9.40 and 9.41 before 9.41.11103 P4-rev1 and 9.50 before 9.50.11925 P3 allows... Low Unreviewed
CVE-2015-5448 was published May 17, 2022
The Citibank Citi Mobile app before 2.0.3 for iOS stores account data in a file, which allows... Low Unreviewed
CVE-2010-2913 was published May 17, 2022
Lockbox in EMC Documentum D2 before 4.5 uses a hardcoded passphrase when a server lacks a D2... Low Unreviewed
CVE-2015-4537 was published May 17, 2022
bootp in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to obtain... Low Unreviewed
CVE-2015-3778 was published May 17, 2022
Exposure of Sensitive Information in Find My Mobile prior to version 7.2.25.14 allows local... Low Unreviewed
CVE-2022-36878 was published Sep 10, 2022
Improper Access Control vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.10.0... Low Unreviewed
CVE-2020-7262 was published May 24, 2022
IBM Cloud Pak System 2.3 could allow a local user in some situations to view the artifacts of... Low Unreviewed
CVE-2021-20478 was published May 24, 2022
A flaw was found in Ansible Tower when running jobs. This flaw allows an attacker to access the... Low Unreviewed
CVE-2020-10698 was published May 24, 2022
A flaw was found in the Linux kernel in versions before 5.4.92 in the BPF protocol. This flaw... Low Unreviewed
CVE-2021-20239 was published May 24, 2022
Citrix Presentation Server Client for Windows before 10.200 does not clear "credential... Low Unreviewed
CVE-2008-6561 was published May 17, 2022
NCH Reflect CRM 3.01 allows local users to discover cleartext user account information by reading... Low Unreviewed
CVE-2021-37468 was published May 24, 2022
Apple iOS before 10, when Handoff for Messages is used, does not ensure that a Messages signin... Low Unreviewed
CVE-2016-4740 was published May 17, 2022
Printing UIKit in Apple iOS before 10 mishandles environment variables, which allows local users... Low Unreviewed
CVE-2016-4749 was published May 17, 2022
Unspecified vulnerability in the search feature in Sun Java System LDAP JDK before 4.20 allows... Low Unreviewed
CVE-2008-4747 was published May 17, 2022
Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11... Low Unreviewed
CVE-2016-5618 was published May 17, 2022
An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue... Low Unreviewed
CVE-2016-7620 was published May 17, 2022
An issue was discovered in certain Apple products. iOS before 10.2 is affected. The issue... Low Unreviewed
CVE-2016-7653 was published May 17, 2022
Unspecified vulnerability in the Solaris Cluster component in Oracle Sun Systems Products Suite 4... Low Unreviewed
CVE-2016-5508 was published May 17, 2022
An issue was discovered in certain Apple products. iOS before 10.2 is affected. The issue... Low Unreviewed
CVE-2016-7664 was published May 17, 2022
An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue... Low Unreviewed
CVE-2016-7624 was published May 17, 2022
Vulnerability in the RDBMS Security component of Oracle Database Server. The supported version... Low Unreviewed
CVE-2017-3240 was published May 17, 2022
IBM Maximo Asset Management 7.1, 7.5, and 7.6 could allow a local user to obtain sensitive... Low Unreviewed
CVE-2017-1176 was published May 17, 2022
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel... Low Unreviewed
CVE-2017-3498 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database