GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,198
Composer 4,343
Erlang 31
GitHub Actions 22
Go 2,107
Maven 5,283
npm 3,764
NuGet 679
pip 3,452
Pub 12
RubyGems 892
Rust 886
Swift 37

Unreviewed advisories

All unreviewed 243,255

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

264,453 advisories

Filter by severity

Sort by

Least recently updated

Varnish varnish-modules before 0.17.1 allows remote attackers to cause a denial of service ... High Unreviewed

CVE-2021-28543 was published May 24, 2022

SeedDMS 6.0.17 and 5.1.24 are vulnerable to Directory Traversal. The "Remove file" functionality... Moderate Unreviewed

CVE-2022-28478 was published Jun 7, 2022

LinkPlay Sound Bar v1.0 allows attackers to escalate privileges via a hardcoded password for the... Critical Unreviewed

CVE-2022-28605 was published Jun 3, 2022

An access issue was addressed with improved memory management. This issue is fixed in iOS 14.5... High Unreviewed

CVE-2021-30656 was published May 24, 2022

Several high privileged APIs on the Vizio P65-F1 6.0.31.4-2 and E50x-E1 10.0.31.4-2 Smart TVs do... Critical Unreviewed

CVE-2021-27944 was published May 24, 2022

A local attacker may be able to view Now Playing information from the lock screen. This issue is... Moderate Unreviewed

CVE-2021-30756 was published May 24, 2022

This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.3, iOS 14... High Unreviewed

CVE-2021-30653 was published May 24, 2022

A flaw was discovered in Continuous Delivery for Puppet Enterprise (CD4PE) that results in a user... High Unreviewed

CVE-2021-27024 was published May 24, 2022

Penguin Aurora TV Box 41502 is a high-end network HD set-top box produced by Tencent Video and... Critical Unreviewed

CVE-2021-41873 was published May 24, 2022

Cleartext Storage of Sensitive Information in Memory vulnerability in Microsoft Windows client in... Low Unreviewed

CVE-2020-7299 was published May 24, 2022

The Keybase Client for Android before version 5.8.0 and the Keybase Client for iOS before version... Moderate Unreviewed

CVE-2021-34421 was published May 24, 2022

** DISPUTED ** Multiple PHP remote file inclusion vulnerabilities in Simple Machines Forum (SMF)... High Unreviewed

CVE-2008-6544 was published May 17, 2022

Gradle Enterprise through 2022.2.2 has Incorrect Access Control that leads to code execution. High Unreviewed

CVE-2022-30586 was published Jun 7, 2022

SchedMD Slurm 21.08.* before 21.08.4 has Incorrect Access Control. On sites using the new... Moderate Unreviewed

CVE-2021-43337 was published May 24, 2022

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before... Moderate Unreviewed

CVE-2017-2510 was published May 17, 2022

Use-after-free vulnerability in Adobe Digital Editions before 4.5.2 allows attackers to execute... Critical Unreviewed

CVE-2016-4263 was published May 17, 2022

Telephony in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-09-01, and 7.0... Moderate Unreviewed

CVE-2016-3898 was published May 17, 2022

Multiple buffer overflows in rtsp/ASessionDescription.cpp in libstagefright in mediaserver in... High Unreviewed

CVE-2016-3880 was published May 17, 2022

Unspecified vulnerability in YourPlace before 1.0.1 has unknown impact and attack vectors,... High Unreviewed

CVE-2008-6445 was published May 17, 2022

Unspecified vulnerability in GreenSQL-Console before 0.3.5 allows attackers to obtain the ... Moderate Unreviewed

CVE-2008-6417 was published May 17, 2022

Use-after-free vulnerability in Adobe Digital Editions before 4.5.2 allows attackers to execute... Critical Unreviewed

CVE-2016-6980 was published May 17, 2022

otool in Apple Xcode before 8 allows local users to gain privileges or cause a denial of service ... High Unreviewed

CVE-2016-4704 was published May 17, 2022

HPE Performance Center 11.52, 12.00, 12.01, 12.20, and 12.50 allows remote attackers to bypass... High Unreviewed

CVE-2016-4382 was published May 17, 2022

Adobe Digital Editions before 4.5.2 allows attackers to execute arbitrary code or cause a denial... Critical Unreviewed

CVE-2016-4262 was published May 17, 2022

Double free vulnerability in drivers/net/usb/cdc_ncm.c in the Linux kernel before 4.5 allows... Moderate Unreviewed

CVE-2016-3951 was published May 17, 2022

Previous 1 2 … 394 395 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

264,453 advisories