Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,458
Erlang
33
GitHub Actions
22
Go
2,156
Maven
5,000+
npm
3,818
NuGet
693
pip
3,497
Pub
12
RubyGems
903
Rust
903
Swift
38
Unreviewed advisories
All unreviewed
5,000+

104,463 advisories

Loading
The do_write_pids function in lxcfs.c in LXCFS before 0.12 does not properly check permissions,... High Unreviewed
CVE-2015-1344 was published May 17, 2022
Cisco AnyConnect Secure Mobility Client 4.0(.00051) and earlier allows local users to gain... High Unreviewed
CVE-2015-0662 was published May 17, 2022
The AddUserFinding implementation in Medicomp MEDCIN Engine 2.22.20153.x before 2.22.20153.226... High Unreviewed
CVE-2015-6006 was published May 17, 2022
SQL injection vulnerability in content-audit-schedule.php in the Content Audit plugin before 1.6... High Unreviewed
CVE-2014-5389 was published May 17, 2022
libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code... High Unreviewed
CVE-2015-6600 was published May 17, 2022
system/session/drivers/cookie.php in Anchor CMS 0.9.x allows remote attackers to conduct PHP... High Unreviewed
CVE-2015-5687 was published May 17, 2022
libarchive in Apple OS X before 10.11.1 allows attackers to write to arbitrary files via a... High Unreviewed
CVE-2015-6984 was published May 17, 2022
The SQL interface in SAP HANA DB 1.00.73.00.389160 (NewDB100_REL) allows remote attackers to... High Unreviewed
CVE-2015-7994 was published May 17, 2022
Qolsys IQ Panel (aka QOL) before 1.5.1 has hardcoded cryptographic keys, which allows remote... High Unreviewed
CVE-2015-6032 was published May 17, 2022
icewind1991 SMB before 1.0.3 allows remote authenticated users to execute arbitrary SMB commands... High Unreviewed
CVE-2015-7698 was published May 17, 2022
libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code... High Unreviewed
CVE-2015-6604 was published May 17, 2022
Buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on... High Unreviewed
CVE-2014-0529 was published May 17, 2022
The filename sanitization component in ownCloud Server before 6.0.8, 7.0.x before 7.0.6, and 8.0... High Unreviewed
CVE-2015-4717 was published May 17, 2022
The MCX Application Restrictions component in Apple OS X before 10.11.1, when Managed... High Unreviewed
CVE-2015-7016 was published May 17, 2022
libutils in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or... High Unreviewed
CVE-2015-3875 was published May 17, 2022
Unspecified vulnerability in the Java VM component in Oracle Database Server 11.1.0.7, 11.2.0.3,... High Unreviewed
CVE-2014-6453 was published May 17, 2022
Unspecified vulnerability in the Java VM component in Oracle Database Server 11.1.0.7, 11.2.0.3,... High Unreviewed
CVE-2014-6545 was published May 17, 2022
The (1) PPP Access Concentrator (PPPAC) and (2) Dial-Up Networking Internet Initiative Japan Inc.... High Unreviewed
CVE-2014-7256 was published May 17, 2022
IBM Cognos Disclosure Management (CDM) 10.1.x and 10.2.x before 10.2.4 IF10 allows man-in-the... High Unreviewed
CVE-2015-5014 was published May 17, 2022
The OpenSSLX509Certificate class in org/conscrypt/OpenSSLX509Certificate.java in Android before 5... High Unreviewed
CVE-2015-3837 was published May 17, 2022
SAP BusinessObjects BI Platform 4.1, BusinessObjects Edge 4.0, and BusinessObjects XI (BOXI) 3.1... High Unreviewed
CVE-2015-7730 was published May 17, 2022
The Autonomic Networking Infrastructure (ANI) implementation in Cisco IOS 12.2, 12.4, 15.0, 15.2,... High Unreviewed
CVE-2015-0636 was published May 17, 2022
OpenNMS has a default password of rtc for the rtc account, which makes it easier for remote... High Unreviewed
CVE-2015-7856 was published May 17, 2022
The Region_createFromParcel function in core/jni/android/graphics/Region.cpp in Region in Android... High Unreviewed
CVE-2015-3849 was published May 17, 2022
Integer overflow in the Bitmap_createFromParcel function in core/jni/android/graphics/Bitmap.cpp... High Unreviewed
CVE-2015-1536 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database