GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,558
Composer 4,458
Erlang 33
GitHub Actions 22
Go 2,156
Maven 5,338
npm 3,818
NuGet 693
pip 3,497
Pub 12
RubyGems 903
Rust 903
Swift 38

Unreviewed advisories

All unreviewed 247,142

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

24,802 advisories

Filter by severity

Sort by

Least recently updated

curl version curl 7.20.0 to and including curl 7.59.0 contains a CWE-126: Buffer Over-read... Critical Unreviewed

CVE-2018-1000301 was published May 13, 2022

In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is... Critical Unreviewed

CVE-2017-8856 was published May 13, 2022

Microsoft Windows XP SP3, Windows XP x64 XP2, Windows Server 2003 SP2, Windows Vista, Windows 7... Critical Unreviewed

CVE-2017-8543 was published May 13, 2022

In Veritas NetBackup Appliance 3.0 and earlier, unauthenticated users can execute arbitrary... Critical Unreviewed

CVE-2017-8859 was published May 13, 2022

PHKP version including commit 88fd9cfdf14ea4b6ac3e3967feea7bcaabb6f03b contains a Improper... Critical Unreviewed

CVE-2018-1000885 was published May 13, 2022

A vulnerability in Sierra Wireless AirLink GX400, GX440, ES440, and LS300 routers with firmware... Critical Unreviewed

CVE-2018-10251 was published May 13, 2022

ubiQuoss Switch VP5208A creates a bcm_password file at /cgi-bin/ with the user credentials in... Critical Unreviewed

CVE-2018-10024 was published May 13, 2022

IPVanish 3.0.11 for macOS suffers from a root privilege escalation vulnerability. The `com... Critical Unreviewed

CVE-2018-10192 was published May 13, 2022

A Cross-site scripting (XSS) vulnerability was discovered on Intelbras Win 240 V1.1.0 devices. An... Critical Unreviewed

CVE-2018-10369 was published May 13, 2022

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the ReadImage function in... Critical Unreviewed

CVE-2017-9171 was published May 13, 2022

Untrusted input execution via igetwild in all iRODS versions before 4.1.11 and 4.2.1 allows other... Critical Unreviewed

CVE-2017-8799 was published May 13, 2022

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the ReadImage function in... Critical Unreviewed

CVE-2017-9193 was published May 13, 2022

Customer of Dahua IP camera or IP PTZ could submit relevant device information to receive a time... Critical Unreviewed

CVE-2017-9315 was published May 13, 2022

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the ReadImage function in... Critical Unreviewed

CVE-2017-9195 was published May 13, 2022

In Open vSwitch (OvS) v2.7.0, there is a buffer over-read while parsing the group mod OpenFlow... Critical Unreviewed

CVE-2017-9265 was published May 13, 2022

Shell metacharacter injection vulnerability in /usr/www/include/ajax/GetTest.php in TerraMaster... Critical Unreviewed

CVE-2017-9328 was published May 13, 2022

RMI vulnerability in Hitachi Device Manager before 8.5.2-01 allows remote attackers to execute... Critical Unreviewed

CVE-2017-9294 was published May 13, 2022

In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is... Critical Unreviewed

CVE-2017-8857 was published May 13, 2022

Dell EMC Avamar Client Manager in Dell EMC Avamar Server versions 7.2.0, 7.2.1, 7.3.0, 7.3.1, 7.4... Critical Unreviewed

CVE-2018-11066 was published May 13, 2022

In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is... Critical Unreviewed

CVE-2017-8858 was published May 13, 2022

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the... Critical Unreviewed

CVE-2017-9709 was published May 13, 2022

Security vulnerabilities in the HPE Integrated Lights-Out 2 (iLO 2) firmware could be exploited... Critical Unreviewed

CVE-2017-8979 was published May 13, 2022

Bitdefender GravityZone VMware appliance before 6.2.1-35 might allow attackers to gain access... Critical Unreviewed

CVE-2017-8931 was published May 13, 2022

A Remote Bypass of Security Restrictions vulnerability was identified in HPE XP Command View... Critical Unreviewed

CVE-2017-8988 was published May 13, 2022

An issue was discovered in multiple models of Axis IP Cameras. There is Shell Command Injection. Critical Unreviewed

CVE-2018-10660 was published May 13, 2022

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

24,802 advisories