Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,963
Erlang
39
GitHub Actions
38
Go
2,615
Maven
5,000+
npm
4,255
NuGet
760
pip
4,036
Pub
12
RubyGems
953
Rust
1,049
Swift
45
Unreviewed advisories
All unreviewed
5,000+

113,462 advisories

Loading
The GPU driver in the kernel in Google Chrome OS before 33.0.1750.152 allows remote attackers to... High Unreviewed
CVE-2014-1711 was published May 17, 2022
PineApp Mail-SeCure 3.70 and earlier on 5099SK and earlier platforms has a sudoers file that does... High Unreviewed
CVE-2013-6831 was published May 17, 2022
The packaging of inn on SUSE Linux Enterprise Server 11; openSUSE Factory, Leap 15.1 allows local... High Unreviewed
CVE-2019-3692 was published May 24, 2022
Buffer overflow in LibTIFF 3.9.4 and possibly other versions, as used in ImageIO in Apple iTunes... High Unreviewed
CVE-2011-0191 was published May 17, 2022
Format string vulnerability in the dkim_exim_verify_finish function in src/dkim.c in Exim before... High Unreviewed
CVE-2011-1764 was published May 17, 2022
Unisys Data Exchange Management Studio before 6.0.IC2 and 7.x before 7.0.IC1 doesn't have an Anti... High Unreviewed
CVE-2022-32555 was published Sep 14, 2022
The (1) Catapult DNP3 I/O driver before 7.2.0.60 and the (2) GE Intelligent Platforms Proficy... High Unreviewed
CVE-2013-2811 was published May 17, 2022
admin/confnetworking.html in PineApp Mail-SeCure allows remote attackers to execute arbitrary... High Unreviewed
CVE-2013-6829 was published May 17, 2022
Buffer overflow in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code... High Unreviewed
CVE-2014-1249 was published May 17, 2022
Android 3.0 through 4.1.x on Disney Mobile, eAccess, KDDI, NTT DOCOMO, SoftBank, and other... High Unreviewed
CVE-2013-4710 was published May 17, 2022
Backup in Apple iOS before 7.1 does not properly restrict symlinks, which allows remote attackers... High Unreviewed
CVE-2013-5133 was published May 17, 2022
admin/confnetworking.html in PineApp Mail-SeCure 3.70 and earlier on 5099SK and earlier platforms... High Unreviewed
CVE-2013-6830 was published May 17, 2022
Improper Input Validation vulnerability in the handling of a specially crafted IEC 61850 packet... High Unreviewed
CVE-2022-29922 was published Sep 15, 2022
A vulnerability was discovered in the Crestron AirMedia Windows Application, version 4.3.1.39, in... High Unreviewed
CVE-2022-34101 was published Sep 14, 2022
Penta Security Systems Inc WAPPLES 4.0.*, 5.0.0.*, 5.0.12.* are vulnerable to Incorrect Access... High Unreviewed
CVE-2022-35582 was published Sep 14, 2022
An improper authorization control vulnerability exists in Ivanti Avalanche before 6.3.3 allows an... High Unreviewed
CVE-2021-42126 was published Dec 8, 2021
An improper access control vulnerability exists in Ivanti Avalanche before 6.3.3 allows an... High Unreviewed
CVE-2021-42124 was published Dec 8, 2021
Local privilege escalation via named pipe due to improper access control checks. The following... High Unreviewed
CVE-2021-44204 was published Feb 10, 2022
Carinal Tien Hospital Health Report System’s login page has improper authentication, a remote... High Unreviewed
CVE-2021-44160 was published Dec 30, 2021
Unspecified vulnerability in the Oracle Reports Developer component in Oracle Fusion Middleware... High Unreviewed
CVE-2013-5785 was published May 17, 2022
The SIMPLE protocol functionality in Pidgin before 2.10.8 allows remote attackers to have an... High Unreviewed
CVE-2013-6490 was published May 17, 2022
The multicast listener discovery (MLD) service on Cisco Wireless LAN Controller (WLC) devices 7.2... High Unreviewed
CVE-2014-0705 was published May 17, 2022
The Foscam FI8910W camera with firmware before 11.37.2.55 allows remote attackers to obtain... High Unreviewed
CVE-2014-1911 was published May 17, 2022
Use-after-free vulnerability in the Channel::SendRTCPPacket function in voice_engine/channel.cc... High Unreviewed
CVE-2013-6631 was published May 17, 2022
Unspecified vulnerability in NVIDIA graphics driver Release 331, 325, 319, 310, and 304 has... High Unreviewed
CVE-2013-5986 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database