GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,947
Composer 4,782
Erlang 36
GitHub Actions 29
Go 2,346
Maven 5,666
npm 3,976
NuGet 720
pip 3,772
Pub 12
RubyGems 923
Rust 980
Swift 38

Unreviewed advisories

All unreviewed 260,236

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

4,940 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Certain function pointers in Trusted Boot (tboot) through 1.9.6 are not validated and can cause... High Unreviewed

CVE-2017-16837 was published May 14, 2022

drivers/media/usb/dvb-usb-v2/lmedm04.c in the Linux kernel through 4.13.11 allows local users to... High Unreviewed

CVE-2017-16538 was published May 14, 2022

In Vir.IT eXplorer Anti-Virus before 8.5.42, the driver file (VIAGLT64.SYS) contains an Arbitrary... High Unreviewed

CVE-2017-16237 was published May 17, 2022

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed

CVE-2017-10953 was published May 13, 2022

Inappropriate use of JIT optimisation in V8 in Google Chrome prior to 61.0.3163.100 for Linux,... High Unreviewed

CVE-2017-5121 was published May 13, 2022

apt-listbugs before 0.1.10 creates temporary files insecurely, which allows attackers to have... High Unreviewed

CVE-2013-6049 was published May 17, 2022

The DrawImage function in magick/render.c in GraphicsMagick 1.3.26 does not properly look for pop... High Unreviewed

CVE-2017-16547 was published May 14, 2022

A vulnerability in the web framework code for the SQL database interface of the Cisco Prime... High Unreviewed

CVE-2017-12276 was published May 13, 2022

Node.js before 4.8.5, 6.x before 6.11.5, and 8.x before 8.8.0 allows remote attackers to cause a... High Unreviewed

CVE-2017-14919 was published May 17, 2022

ios/CDVFileTransfer.m in the Apache Cordova File-Transfer standalone plugin (org.apache.cordova... High Unreviewed

CVE-2014-0072 was published May 14, 2022

OpenText Documentum Content Server (formerly EMC Documentum Content Server) through 7.3 does not... High Unreviewed

CVE-2017-15012 was published May 17, 2022

A Host Header Injection vulnerability in Trend Micro OfficeScan XG (12.0) may allow an attacker... High Unreviewed

CVE-2017-14087 was published May 14, 2022

Panasonic KX-HJB1000 Home unit devices with firmware GHX1YG 14.50 or HJB1000_4.47 allow an... High Unreviewed

CVE-2017-2132 was published May 17, 2022

In dnsmasq before 2.78, if the DNS packet size does not match the expected size, the size... High Unreviewed

CVE-2017-13704 was published May 14, 2022

In Open Ticket Request System (OTRS) 3.3.x before 3.3.18, 4.x before 4.0.25, and 5.x before 5.0... High Unreviewed

CVE-2017-14635 was published May 13, 2022

A vulnerability in the Cisco FindIT Network Discovery Utility could allow an authenticated, local... High Unreviewed

CVE-2017-12252 was published May 13, 2022

An issue was discovered in SugarCRM before 7.7.2.3, 7.8.x before 7.8.2.2, and 7.9.x before 7.9.2... High Unreviewed

CVE-2017-14509 was published May 14, 2022

An issue was discovered in SAP E-Recruiting (aka ERECRUIT) 605 through 617. When an external... High Unreviewed

CVE-2017-14511 was published May 17, 2022

Windows graphics on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1,... High Unreviewed

CVE-2017-8682 was published May 14, 2022

This vulnerability allows local attackers to escalate privileges on Jungo WinDriver 12.4.0 and... High Unreviewed

CVE-2017-14344 was published May 14, 2022

In Wireshark 2.4.0, 2.2.0 to 2.2.8, and 2.0.0 to 2.0.14, the MSDP dissector could go into an... High Unreviewed

CVE-2017-13767 was published May 13, 2022

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed

CVE-2017-10952 was published May 13, 2022

The tokenizer in QPDF 6.0.0 and 7.0.b1 is recursive for arrays and dictionaries, which allows... High Unreviewed

CVE-2017-12595 was published May 14, 2022

In FlightGear before version 2017.3.1, Main/logger.cxx in the FGLogger subsystem allows one to... High Unreviewed

CVE-2017-13709 was published May 17, 2022

In GraphicsMagick 1.3.26, an allocation failure vulnerability was found in the function... High Unreviewed

CVE-2017-13147 was published May 13, 2022

Previous 1 2 3 4 5 6 7 … 197 198 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

4,940 advisories