Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+

405 advisories

Loading
An exploitable vulnerability exists in the /api/CONFIG/restore functionality of Circle with... High Unreviewed
CVE-2017-2916 was published May 13, 2022
A flaw was found in RPC request using gfs3_symlink_req in glusterfs server which allows symlink... High Unreviewed
CVE-2018-10928 was published May 13, 2022
systemd-tmpfiles in systemd through 237 mishandles symlinks present in non-terminal path... High Unreviewed
CVE-2018-6954 was published May 13, 2022
systemd-tmpfiles in systemd before 237 attempts to support ownership/permission changes on... High Unreviewed
CVE-2017-18078 was published May 13, 2022
The nginx package before 1.6.2-5+deb8u3 on Debian jessie, the nginx packages before 1.4.6... High Unreviewed
CVE-2016-1247 was published May 13, 2022
A directory traversal issue was found in reposync, a part of yum-utils, where reposync fails to... High Unreviewed
CVE-2018-10897 was published May 13, 2022
It was found that versions of rpm before 4.13.0.2 use temporary files with predictable names when... High Unreviewed
CVE-2017-7501 was published May 13, 2022
mysqld_safe in Oracle MySQL through 5.5.51, 5.6.x through 5.6.32, and 5.7.x through 5.7.14;... High Unreviewed
CVE-2016-6664 was published May 13, 2022
A hard-link created from the log file of Check Point ZoneAlarm up to 15.4.062 to any file on the... High Unreviewed
CVE-2019-8455 was published May 13, 2022
RubyGems Link Following vulnerability High
CVE-2018-1000073 was published for org.jruby:jruby-stdlib (RubyGems) May 13, 2022
Information leakage vulnerability in the administrative console in Dialogic PowerMedia XMS... High Unreviewed
CVE-2018-11637 was published May 13, 2022
In Perl through 5.26.2, the Archive::Tar module allows remote attackers to bypass a directory... High Unreviewed
CVE-2018-12015 was published May 13, 2022
An elevation of privilege vulnerability exists when the Windows Data Sharing Service improperly... High Unreviewed
CVE-2019-0572 was published May 13, 2022
An elevation of privilege vulnerability exists when the Windows Data Sharing Service improperly... High Unreviewed
CVE-2019-0574 was published May 13, 2022
An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC)... High Unreviewed
CVE-2019-0841 was published May 13, 2022
NVIDIA GeForce Experience before 3.18 contains a vulnerability when ShadowPlay or GameStream is... High Unreviewed
CVE-2019-5674 was published May 13, 2022
NVIDIA Windows GPU Display driver contains a vulnerability in the 3D vision component in which... High Unreviewed
CVE-2019-5665 was published May 13, 2022
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1... High Unreviewed
CVE-2018-1834 was published May 13, 2022
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 could... High Unreviewed
CVE-2018-1781 was published May 13, 2022
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 could... High Unreviewed
CVE-2018-1780 was published May 13, 2022
PostgreSQL 10.x before 10.1, 9.6.x before 9.6.6, 9.5.x before 9.5.10, 9.4.x before 9.4.15, 9.3.x... High Unreviewed
CVE-2017-12172 was published May 13, 2022
Qemu before version 2.9 is vulnerable to an improper link following when built with the VirtFS. A... High Unreviewed
CVE-2016-9602 was published May 13, 2022
A privilege escalation vulnerability was found in nagios 4.2.x that occurs in daemon-init.in when... High Unreviewed
CVE-2016-8641 was published May 13, 2022
In open buildservice 2.6 before 2.6.3, 2.5 before 2.5.7 and 2.4 before 2.4.8 the source service... High Unreviewed
CVE-2015-0796 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10... High Unreviewed
CVE-2017-6981 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database