Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,790
Erlang
36
GitHub Actions
29
Go
2,370
Maven
5,000+
npm
3,994
NuGet
720
pip
3,783
Pub
12
RubyGems
927
Rust
982
Swift
38
Unreviewed advisories
All unreviewed
5,000+

566 advisories

Loading
fileio.c in Vim prior to 8.0.1263 sets the group ownership of a .swp file to the editor's primary... Moderate Unreviewed
CVE-2017-17087 was published May 13, 2022
Microsoft Internet Explorer 6 through 8 does not properly restrict web script, which allows user... Moderate Unreviewed
CVE-2011-1258 was published May 13, 2022
Microsoft Internet Explorer 6 through 9 does not properly implement JavaScript event handlers,... Moderate Unreviewed
CVE-2011-1960 was published May 13, 2022
VMware Identity Manager 2.x before 2.7.1 and vRealize Automation 7.x before 7.2.0 allow remote... Moderate Unreviewed
CVE-2016-5334 was published May 13, 2022
A malicious or compromised UApp or ABL could potentially change the value that the ASP uses for... Moderate Unreviewed
CVE-2021-26363 was published May 13, 2022
A malicious or compromised User Application (UApp) or AGESA Boot Loader (ABL) could be used by an... Moderate Unreviewed
CVE-2021-26361 was published May 13, 2022
Information leakage occurs when a website reveals information that could aid an attacker to... Moderate Unreviewed
CVE-2021-27769 was published May 13, 2022
An attacker with access to a malicious hypervisor may be able to infer data values used in a SEV... Moderate Unreviewed
CVE-2021-46744 was published May 12, 2022
Windows Graphics Component Information Disclosure Vulnerability. This CVE ID is unique from CVE... Moderate Unreviewed
CVE-2022-22011 was published May 11, 2022
Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability. Moderate Unreviewed
CVE-2022-22015 was published May 11, 2022
Windows WLAN AutoConfig Service Information Disclosure Vulnerability. Moderate Unreviewed
CVE-2022-26935 was published May 11, 2022
Windows Server Service Information Disclosure Vulnerability. Moderate Unreviewed
CVE-2022-26936 was published May 11, 2022
Windows NTFS Information Disclosure Vulnerability. Moderate Unreviewed
CVE-2022-26933 was published May 11, 2022
Remote Desktop Protocol Client Information Disclosure Vulnerability. Moderate Unreviewed
CVE-2022-26940 was published May 11, 2022
Windows Failover Cluster Information Disclosure Vulnerability. Moderate Unreviewed
CVE-2022-29102 was published May 11, 2022
Windows Graphics Component Information Disclosure Vulnerability. This CVE ID is unique from CVE... Moderate Unreviewed
CVE-2022-29112 was published May 11, 2022
Windows Clustered Shared Volume Information Disclosure Vulnerability. This CVE ID is unique from... Moderate Unreviewed
CVE-2022-29120 was published May 11, 2022
Windows Clustered Shared Volume Information Disclosure Vulnerability. This CVE ID is unique from... Moderate Unreviewed
CVE-2022-29122 was published May 11, 2022
Windows Clustered Shared Volume Information Disclosure Vulnerability. This CVE ID is unique from... Moderate Unreviewed
CVE-2022-29123 was published May 11, 2022
Local Information Disclosure Vulnerability in io.netty:netty-codec-http Moderate
CVE-2022-24823 was published for io.netty:netty-codec-http (Maven) May 10, 2022
JLLeitschuh
In the KeepKey firmware before 7.3.2, the bootloader can be exploited in unusual situations in... Moderate Unreviewed
CVE-2022-30330 was published May 8, 2022
Brave before 1.34, when a Private Window with Tor Connectivity is used, leaks .onion URLs in... Moderate Unreviewed
CVE-2022-30334 was published May 8, 2022
Insecure temporary file vulnerability in RedHat vsdm 4.9.6. Moderate Unreviewed
CVE-2013-4280 was published May 5, 2022
An improper access control vulnerability [CWE-284] in FortiOS versions 6.4.8 and prior and 7.0.3... Moderate Unreviewed
CVE-2021-41032 was published May 5, 2022
Acme Thttpd Secure Webserver before 2.22, with the chroot option enabled, allows remote attackers... Moderate Unreviewed
CVE-2001-0892 was published Apr 30, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database