GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,369
Composer 4,373
Erlang 33
GitHub Actions 22
Go 2,135
Maven 5,313
npm 3,797
NuGet 687
pip 3,478
Pub 12
RubyGems 896
Rust 897
Swift 38

Unreviewed advisories

All unreviewed 245,396

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

24,636 advisories

Filter by severity

Sort by

Least recently updated

The UMA product with software V200R001 and V300R001 has a privilege elevation vulnerability due... Critical Unreviewed

CVE-2017-8128 was published May 13, 2022

vsftpd on TP-Link C2 and C20i devices through firmware 0.9.1 4.2 v0032.0 Build 160706 Rel.37961n... Critical Unreviewed

CVE-2017-8218 was published May 13, 2022

In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Mobile and Snapdragon... Critical Unreviewed

CVE-2017-8274 was published May 13, 2022

Heap-based buffer overflow in the PdfParser::ReadObjects function in base/PdfParser.cpp in PoDoFo... Critical Unreviewed

CVE-2017-8378 was published May 13, 2022

curl version curl 7.20.0 to and including curl 7.59.0 contains a CWE-126: Buffer Over-read... Critical Unreviewed

CVE-2018-1000301 was published May 13, 2022

Cleartext password storage exists on Peplink Balance 305, 380, 580, 710, 1350, and 2500 devices... Critical Unreviewed

CVE-2017-8837 was published May 13, 2022

In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is... Critical Unreviewed

CVE-2017-8856 was published May 13, 2022

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the ReadImage function in... Critical Unreviewed

CVE-2017-9171 was published May 13, 2022

A vulnerability in Sierra Wireless AirLink GX400, GX440, ES440, and LS300 routers with firmware... Critical Unreviewed

CVE-2018-10251 was published May 13, 2022

IPVanish 3.0.11 for macOS suffers from a root privilege escalation vulnerability. The `com... Critical Unreviewed

CVE-2018-10192 was published May 13, 2022

A Cross-site scripting (XSS) vulnerability was discovered on Intelbras Win 240 V1.1.0 devices. An... Critical Unreviewed

CVE-2018-10369 was published May 13, 2022

PHKP version including commit 88fd9cfdf14ea4b6ac3e3967feea7bcaabb6f03b contains a Improper... Critical Unreviewed

CVE-2018-1000885 was published May 13, 2022

ubiQuoss Switch VP5208A creates a bcm_password file at /cgi-bin/ with the user credentials in... Critical Unreviewed

CVE-2018-10024 was published May 13, 2022

In Veritas NetBackup Appliance 3.0 and earlier, unauthenticated users can execute arbitrary... Critical Unreviewed

CVE-2017-8859 was published May 13, 2022

Microsoft Windows XP SP3, Windows XP x64 XP2, Windows Server 2003 SP2, Windows Vista, Windows 7... Critical Unreviewed

CVE-2017-8543 was published May 13, 2022

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the ReadImage function in... Critical Unreviewed

CVE-2017-9193 was published May 13, 2022

In Open vSwitch (OvS) v2.7.0, there is a buffer over-read while parsing the group mod OpenFlow... Critical Unreviewed

CVE-2017-9265 was published May 13, 2022

Untrusted input execution via igetwild in all iRODS versions before 4.1.11 and 4.2.1 allows other... Critical Unreviewed

CVE-2017-8799 was published May 13, 2022

Customer of Dahua IP camera or IP PTZ could submit relevant device information to receive a time... Critical Unreviewed

CVE-2017-9315 was published May 13, 2022

Shell metacharacter injection vulnerability in /usr/www/include/ajax/GetTest.php in TerraMaster... Critical Unreviewed

CVE-2017-9328 was published May 13, 2022

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the ReadImage function in... Critical Unreviewed

CVE-2017-9195 was published May 13, 2022

RMI vulnerability in Hitachi Device Manager before 8.5.2-01 allows remote attackers to execute... Critical Unreviewed

CVE-2017-9294 was published May 13, 2022

A Remote Bypass of Security Restrictions vulnerability was identified in HPE XP Command View... Critical Unreviewed

CVE-2017-8988 was published May 13, 2022

In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is... Critical Unreviewed

CVE-2017-8857 was published May 13, 2022

In libytnef in ytnef through 1.9.2, there is a heap-based buffer over-read due to incorrect... Critical Unreviewed

CVE-2017-9058 was published May 13, 2022

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

24,636 advisories