Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+

101,354 advisories

Loading
Intel Graphics Driver in Apple OS X before 10.9.4 does not properly restrict an unspecified... High Unreviewed
CVE-2014-1373 was published May 17, 2022
Intel Compute in Apple OS X before 10.9.4 does not properly restrict an unspecified OpenCL API... High Unreviewed
CVE-2014-1376 was published May 17, 2022
Array index error in IOAcceleratorFamily in Apple OS X before 10.9.4 allows attackers to execute... High Unreviewed
CVE-2014-1377 was published May 17, 2022
The iControl API in F5 BIG-IP LTM, APM, ASM, GTM, Link Controller, and PSM 10.0.0 through 10.2.4... High Unreviewed
CVE-2014-2928 was published May 17, 2022
Pacom 1000 CCU and RTU GMS devices allow remote attackers to spoof the controller-to-base data... High Unreviewed
CVE-2014-3260 was published May 17, 2022
The image-upgrade implementation on Cisco Desktop Collaboration Experience (aka Collaboration... High Unreviewed
CVE-2015-0584 was published May 17, 2022
Wi-Fi in Android 6.0 before 2015-12-01 allows attackers to gain privileges via a crafted... High Unreviewed
CVE-2015-6623 was published May 17, 2022
Mahara before 20.10.5, 21.04.4, 21.10.2, and 22.04.0 is vulnerable to Cross Site Request Forgery ... High Unreviewed
CVE-2022-28892 was published Apr 29, 2022
Denial of Service in Apache POI High
CVE-2017-12626 was published for org.apache.poi:poi (Maven) Jan 14, 2021
Arista EOS before 4.11.12, 4.12 before 4.12.11, 4.13 before 4.13.14M, 4.14 before 4.14.5FX.5, and... High Unreviewed
CVE-2015-8236 was published May 17, 2022
Exemys Telemetry Web Server relies on an HTTP Location header to indicate that a client is... High Unreviewed
CVE-2015-7910 was published May 17, 2022
The VideoFramePool::PoolImpl::CreateFrame function in media/base/video_frame_pool.cc in Google... High Unreviewed
CVE-2015-8480 was published May 17, 2022
Command injection in docker-tester High
CVE-2021-34079 was published for docker-tester (npm) Jun 3, 2022
Path Traversal in Apache Camel High
CVE-2019-0194 was published for org.apache.camel:camel-core (Maven) May 2, 2019
XML External Entity injection in Apache Camel High
CVE-2019-0188 was published for org.apache.camel:camel-core (Maven) May 29, 2019
The ping functionality in cgi-bin/diagnostic.cgi on Seowon Intech SWC-9100 routers allows remote... High Unreviewed
CVE-2013-7179 was published May 17, 2022
Insufficiently Protected Credentials and Improper Authentication in Spring Security High
CVE-2019-11272 was published for org.springframework.security:spring-security-cas (Maven) Jun 27, 2019
The Debian build procedure for the smokeping package in wheezy before 2.6.8-2+deb7u1 and jessie... High Unreviewed
CVE-2015-0859 was published May 17, 2022
The administration-panel web service in IBM System Networking Switch Center (SNSC) before 7.3.1.5... High Unreviewed
CVE-2015-7818 was published May 17, 2022
The parse_picture_segment function in libavcodec/pgssubdec.c in FFmpeg before 1.1 allows remote... High Unreviewed
CVE-2013-0852 was published May 17, 2022
mediaserver in Android before 5.1.1 LMY48Z allows remote attackers to execute arbitrary code or... High Unreviewed
CVE-2015-8505 was published May 17, 2022
The app-installation functionality in MobileInstallation in Apple iOS before 8.1.3 allows... High Unreviewed
CVE-2014-4493 was published May 17, 2022
The Extended Application Services (aka XS or XS Engine) in SAP HANA DB 1.00.73.00.389160 ... High Unreviewed
CVE-2015-7993 was published May 17, 2022
diag in IBM Security Guardium 8.2 before p6015, 9.0 before p6015, 9.1, 9.5, and 10.0 before p6015... High Unreviewed
CVE-2015-5043 was published May 17, 2022
Adobe Flash Player versions 26.0.0.137 and earlier have a security bypass vulnerability that... High Unreviewed
CVE-2017-3085 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database