Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,950
Erlang
39
GitHub Actions
38
Go
2,605
Maven
5,000+
npm
4,250
NuGet
756
pip
4,016
Pub
12
RubyGems
953
Rust
1,049
Swift
45
Unreviewed advisories
All unreviewed
5,000+

9,924 advisories

Loading
AOSP Mail in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before... Moderate Unreviewed
CVE-2016-3896 was published May 17, 2022
In Lenovo Connect2 versions earlier than 4.2.5.4885 for Windows and 4.2.5.3071 for Android, when... Moderate Unreviewed
CVE-2017-3742 was published May 17, 2022
framework/modules/addressbook/controllers/addressController.php in Exponent CMS v2.4.0 allows... Moderate Unreviewed
CVE-2016-9285 was published May 17, 2022
Xen 4.7 allows local guest OS users to obtain sensitive host information by loading a 32-bit ELF... Moderate Unreviewed
CVE-2016-9384 was published May 17, 2022
The GeoServices component in Apple iOS before 10 and watchOS before 3 does not properly restrict... Moderate Unreviewed
CVE-2016-4719 was published May 17, 2022
VMware Fusion 8.x before 8.5 on OS X, when System Integrity Protection (SIP) is enabled, allows... Moderate Unreviewed
CVE-2016-5329 was published May 17, 2022
Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to disclose information due to how... Moderate Unreviewed
CVE-2017-8662 was published May 17, 2022
The Volume Manager Extension Driver in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2... Moderate Unreviewed
CVE-2017-8668 was published May 17, 2022
Microsoft Win32k in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows... Moderate Unreviewed
CVE-2017-8666 was published May 17, 2022
Unspecified vulnerability in the Oracle CRM Technical Foundation component in Oracle E-Business... Moderate Unreviewed
CVE-2016-5596 was published May 17, 2022
Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial... Moderate Unreviewed
CVE-2016-5603 was published May 17, 2022
Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11... Low Unreviewed
CVE-2016-5618 was published May 17, 2022
Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 preserve the network connection used... Moderate Unreviewed
CVE-2016-2830 was published May 17, 2022
The Administrative Console in IBM WebSphere Application Server (WAS) 7.x before 7.0.0.43, 8.0.x... Moderate Unreviewed
CVE-2016-0377 was published May 17, 2022
Check Point VPN-1 R55, R65, and other versions, when Port Address Translation (PAT) is used,... Moderate Unreviewed
CVE-2008-5849 was published May 17, 2022
The kernel in Apple iOS before 10 and OS X before 10.12 allows local users to bypass intended... Moderate Unreviewed
CVE-2016-4771 was published May 17, 2022
NSSecureTextField in Apple OS X before 10.12 does not enable Secure Input, which allows attackers... Moderate Unreviewed
CVE-2016-4742 was published May 17, 2022
mDNSResponder in Apple OS X before 10.12, when VMnet.framework is used, arranges for a DNS proxy... Moderate Unreviewed
CVE-2016-4739 was published May 17, 2022
The Date & Time Pref Pane component in Apple OS X before 10.12 mishandles the .GlobalPreferences... Moderate Unreviewed
CVE-2016-4715 was published May 17, 2022
IBM Robotic Process Automation 20.12 through 21.0.6 is vulnerable to exposure of the name and... Moderate Unreviewed
CVE-2022-43573 was published Jan 5, 2023
The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421733-160420a... High Unreviewed
CVE-2017-9478 was published May 17, 2022
IBM Spectrum Copy Data Management 2.2.0.0 through 2.2.15.0 could allow a remote attacker to view... Moderate Unreviewed
CVE-2022-31769 was published Jun 11, 2022
A vulnerability was found in Evolution Events Artaxerxes. It has been declared as problematic.... High Unreviewed
CVE-2022-4869 was published Jan 5, 2023
VMware vCenter Server (6.5 prior to 6.5 U1) contains an information disclosure issue due to the... Moderate Unreviewed
CVE-2017-4922 was published May 17, 2022
Unspecified vulnerability in the search feature in Sun Java System LDAP JDK before 4.20 allows... Low Unreviewed
CVE-2008-4747 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database