Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,631
NuGet
638
pip
3,246
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

625 advisories

Loading
Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and... High Unreviewed
CVE-2017-3012 was published May 13, 2022
Adobe Digital Editions versions 4.5.4 and earlier contain an insecure library loading... Critical Unreviewed
CVE-2017-3092 was published May 13, 2022
Adobe Digital Editions versions 4.5.4 and earlier contain an insecure library loading... Critical Unreviewed
CVE-2017-3090 was published May 13, 2022
Adobe Digital Editions versions 4.5.4 and earlier contain an insecure library loading... Critical Unreviewed
CVE-2017-3097 was published May 13, 2022
Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and... High Unreviewed
CVE-2017-3013 was published May 13, 2022
Code injection vulnerability in AVG Ultimate 17.1 (and earlier), AVG Internet Security 17.1 (and... High Unreviewed
CVE-2017-5566 was published May 13, 2022
Code injection vulnerability in Avast Premier 12.3 (and earlier), Internet Security 12.3 (and... High Unreviewed
CVE-2017-5567 was published May 13, 2022
Code injection vulnerability in Trend Micro Maximum Security 11.0 (and earlier), Internet... High Unreviewed
CVE-2017-5565 was published May 13, 2022
Symantec VIP Access for Desktop prior to 2.2.4 can be susceptible to a DLL Pre-Loading... High Unreviewed
CVE-2017-6329 was published May 13, 2022
Code injection vulnerability in Avira Total Security Suite 15.0 (and earlier), Optimization Suite... High Unreviewed
CVE-2017-6417 was published May 13, 2022
Microsoft Skype 7.16.0.102 contains a vulnerability that could allow an unauthenticated, remote... Critical Unreviewed
CVE-2017-6517 was published May 13, 2022
In Adam Kropelin adk0212 APC UPS Daemon through 3.14.14, the default installation of APCUPSD... High Unreviewed
CVE-2017-7884 was published May 13, 2022
The "pingsender" executable used by the Firefox Health Report dynamically loads a system copy of... High Unreviewed
CVE-2017-7836 was published May 13, 2022
A DLL Hijacking vulnerability in the programming software in Schneider Electric's SoMachine HVAC... High Unreviewed
CVE-2017-7966 was published May 13, 2022
A DLL injection vulnerability in the Intel IoT Developers Kit 4.0 installer may allow an... Moderate Unreviewed
CVE-2018-12163 was published May 13, 2022
Adobe Connect versions 9.7.5 and earlier have an Insecure Library Loading vulnerability.... Critical Unreviewed
CVE-2018-12805 was published May 13, 2022
Swisscom TVMediaHelper 1.1.0.50 contains a vulnerability that could allow an unauthenticated,... High Unreviewed
CVE-2018-6766 was published May 13, 2022
Swisscom MySwisscomAssistant 2.17.1.1065 contains a vulnerability that could allow an... High Unreviewed
CVE-2018-6765 was published May 13, 2022
The Rust Programming Language rustdoc version Between 0.8 and 1.27.0 contains a CWE-427:... High Unreviewed
CVE-2018-1000622 was published May 13, 2022
ExifTool 8.32 allows local users to gain privileges by creating a %TEMP%\par-%username%\cache... High Unreviewed
CVE-2018-20211 was published May 14, 2022
A DLL hijacking vulnerability exists in Schneider Electric Software Update (SESU), all versions... High Unreviewed
CVE-2018-7799 was published May 14, 2022
Adobe Technical Communications Suite versions 1.0.5.1 and below have an insecure library loading ... High Unreviewed
CVE-2018-15976 was published May 14, 2022
Norton Power Eraser (prior to 5.3.0.24) and SymDiag (prior to 2.1.242) may be susceptible to a... High Unreviewed
CVE-2018-5238 was published May 14, 2022
DLL Hijacking vulnerability in CorelDRAW X7, Corel Photo-Paint X7, Corel PaintShop Pro X7, Corel... High Unreviewed
CVE-2014-8393 was published May 14, 2022
In AutomationDirect CLICK Programming Software (Part Number C0-PGMSW) Versions 2.10 and prior; C... High Unreviewed
CVE-2017-14020 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API