GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,266
Erlang
31
GitHub Actions
21
Go
2,040
Maven
5,000+
npm
3,732
NuGet
662
pip
3,413
Pub
12
RubyGems
891
Rust
866
Swift
36
Unreviewed advisories
All unreviewed
5,000+
422 advisories
Filter by severity
Uncaught exception in the BIOS firmware for some Intel(R) Processors may allow a privileged user...
High
Unreviewed
CVE-2021-0190
was published
May 13, 2022
A missing error check exists in the Multi-Camera interface used by the Foscam C1 Indoor HD Camera...
Critical
Unreviewed
CVE-2017-2877
was published
May 13, 2022
XMLTooling Library Incorrectly Handles Some Exceptions
High
CVE-2019-9628
was published
for
org.opensaml:xmltooling
(Maven)
May 13, 2022
•
withdrawn
A vulnerability has been identified in SIMATIC CP 443-1 OPC UA (All versions), SIMATIC ET 200SP...
High
Unreviewed
CVE-2019-6575
was published
May 13, 2022
A vulnerability in the web management interface of Cisco Wireless LAN Controller (WLC) Software...
High
Unreviewed
CVE-2017-3832
was published
May 13, 2022
OpenStack Neutron's unsupported dport option prevents applying security groups
High
CVE-2019-9735
was published
for
neutron
(pip)
May 13, 2022
A vulnerability in the detection engine of Cisco Firepower Threat Defense Software could allow an...
Moderate
Unreviewed
CVE-2019-1691
was published
May 13, 2022
A vulnerability in SonicWall SonicOS and SonicOSv, allow authenticated read-only admin to leave...
Moderate
Unreviewed
CVE-2019-7474
was published
May 13, 2022
A vulnerability in the netconf interface of Cisco IOS XR Software could allow an unauthenticated,...
Moderate
Unreviewed
CVE-2018-0286
was published
May 13, 2022
A vulnerability in the Bidirectional Forwarding Detection (BFD) offload implementation of Cisco...
High
Unreviewed
CVE-2018-0155
was published
May 13, 2022
Failure condition is not handled properly and the correct error code is not returned. It could...
High
Unreviewed
CVE-2018-11921
was published
May 13, 2022
Cloud Foundry Loggregator, versions 89.x prior to 89.5 or 96.x prior to 96.1 or 99.x prior to 99...
Moderate
Unreviewed
CVE-2018-1269
was published
May 13, 2022
IBM DataPower Gateways 7.1, 7.2, 7.5, 7.5.1, 7.5.2, 7.6, and 7.7 and IBM MQ Appliance are...
Moderate
Unreviewed
CVE-2018-1677
was published
May 13, 2022
VeryNginx 0.3.3 allows remote attackers to bypass the Web Application Firewall feature because...
Critical
Unreviewed
CVE-2018-19991
was published
May 13, 2022
A Denial of Service issue was discovered in the LIVE555 Streaming Media libraries as used in...
Critical
Unreviewed
CVE-2019-6256
was published
May 13, 2022
A vulnerability in the Session Initiation Protocol (SIP) call-handling functionality of Cisco IP...
High
Unreviewed
CVE-2018-0316
was published
May 13, 2022
A vulnerability in the Secure Sockets Layer (SSL) Engine of Cisco Firepower System Software could...
Moderate
Unreviewed
CVE-2018-0272
was published
May 13, 2022
Certain 802.11 network management messages have been determined to invoke wireless access point...
Moderate
Unreviewed
CVE-2017-9658
was published
May 13, 2022
Under specific 802.11 network conditions, a partial re-association of the Philips IntelliVue MX40...
Moderate
Unreviewed
CVE-2017-9657
was published
May 13, 2022
A flaw was found in the Linux kernel before version 4.12 in the way the KVM module processed the...
High
Unreviewed
CVE-2017-7518
was published
May 13, 2022
fedora-arm-installer up to and including 1.99.16 is vulnerable to local privilege escalation due...
High
Unreviewed
CVE-2017-7496
was published
May 13, 2022
A vulnerability in the ingress UDP packet processing functionality of Cisco Virtualized Packet...
High
Unreviewed
CVE-2017-6678
was published
May 13, 2022
Windows Hyper-V in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1,...
High
Unreviewed
CVE-2017-0193
was published
May 13, 2022
An elevation of privilege vulnerability in the Goodix touchscreen driver could enable a local...
High
Unreviewed
CVE-2017-0622
was published
May 13, 2022
A remote code execution vulnerability in the Android media framework (libstagefright). Product:...
High
Unreviewed
CVE-2017-0760
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API