Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+

2,910 advisories

Loading
Juju before 1.25.12, 2.0.x before 2.0.4, and 2.1.x before 2.1.3 uses a UNIX domain socket without... Critical Unreviewed
CVE-2017-9232 was published May 13, 2022
CompuLab Intense PC and MintBox 2 devices with BIOS before 2017-05-21 do not use the CloseMnf... High Unreviewed
CVE-2017-8083 was published May 13, 2022
dde-daemon, the daemon process of DDE (Deepin Desktop Environment) 15.0 through 15.3, runs with... High Unreviewed
CVE-2017-7622 was published May 13, 2022
PostgreSQL versions before 9.4.13, 9.5.8 and 9.6.4 are vulnerable to authorization flaw allowing... High Unreviewed
CVE-2017-7548 was published May 13, 2022
A vulnerability in the ConfD server component of Cisco Elastic Services Controllers could allow... Moderate Unreviewed
CVE-2017-6693 was published May 13, 2022
A vulnerability in the role-based access control (RBAC) functionality of Cisco Prime Data Center... Critical Unreviewed
CVE-2017-6639 was published May 13, 2022
A vulnerability in the web interface of Cisco Prime Collaboration Provisioning Software (prior to... Moderate Unreviewed
CVE-2017-6635 was published May 13, 2022
A vulnerability in the web interface for Cisco Prime Collaboration Provisioning could allow an... Critical Unreviewed
CVE-2017-6622 was published May 13, 2022
A vulnerability in the debug plug-in functionality of the Cisco Unified Computing System (UCS)... High Unreviewed
CVE-2017-6598 was published May 13, 2022
On Franklin Fueling Systems TS-550 evo 2.3.0.7332 devices, the roleDiag user, which can be... High Unreviewed
CVE-2017-6565 was published May 13, 2022
On Franklin Fueling Systems TS-550 evo 2.3.0.7332 devices, the Guest user, which contains the... Moderate Unreviewed
CVE-2017-6564 was published May 13, 2022
Insufficient checks in the UDF subsystem in Firebird 2.5.x before 2.5.7 and 3.0.x before 3.0.2... High Unreviewed
CVE-2017-6369 was published May 13, 2022
NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer handler where... High Unreviewed
CVE-2017-6251 was published May 13, 2022
lxc-user-nic in Linux Containers (LXC) allows local users with a lxc-usernet allocation to create... Low Unreviewed
CVE-2017-5985 was published May 13, 2022
Firejail before 0.9.44.4 and 0.9.38.x LTS before 0.9.38.8 LTS does not consider the .Xauthority... High Unreviewed
CVE-2017-5180 was published May 13, 2022
An issue was discovered on SendQuick Entera and Avera devices before 2HF16. The application... High Unreviewed
CVE-2017-5136 was published May 13, 2022
In EMC VNX2 versions prior to OE for File 8.1.9.211 and VNX1 versions prior to OE for File 7.1.80... High Unreviewed
CVE-2017-4985 was published May 13, 2022
A vulnerability in the Start Before Logon (SBL) module of Cisco AnyConnect Secure Mobility Client... High Unreviewed
CVE-2017-3813 was published May 13, 2022
While accessing SafeSwitch services, third party can manipulate a given device and perform... High Unreviewed
CVE-2017-18312 was published May 13, 2022
The KEYS subsystem in the Linux kernel before 4.14.6 omitted an access-control check when adding... Low Unreviewed
CVE-2017-17807 was published May 13, 2022
In Octopus Deploy before 4.1.3, the machine update process doesn't check that the user has access... High Unreviewed
CVE-2017-17665 was published May 13, 2022
Techno - Portfolio Management Panel through 2017-11-16 does not check authorization for panel... Moderate Unreviewed
CVE-2017-17693 was published May 13, 2022
Due to missing authorization checks, any authenticated user is able to list, upload, or delete... High Unreviewed
CVE-2017-17707 was published May 13, 2022
net/netfilter/nfnetlink_cthelper.c in the Linux kernel through 4.14.4 does not require the... High Unreviewed
CVE-2017-17448 was published May 13, 2022
net/netfilter/xt_osf.c in the Linux kernel through 4.14.4 does not require the CAP_NET_ADMIN... High Unreviewed
CVE-2017-17450 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database