Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+

6 advisories

Loading
Play With Docker < 0.0.2 has an insecure CAP_SYS_ADMIN privileged mode causing the docker... Critical Unreviewed
CVE-2023-34844 was published Jun 29, 2023
SNMPTT before 1.4.2 allows attackers to execute shell code via EXEC, PREXEC, or unknown_trap_exec. Critical Unreviewed
CVE-2020-24361 was published May 24, 2022
AlienVault USM and OSSIM before 5.3.7 and NfSen before 1.3.8 have an error in privilege dropping... Critical Unreviewed
CVE-2017-6972 was published May 13, 2022
Bitlbee does not drop extra group privileges correctly in unix.c Critical Unreviewed
CVE-2012-1187 was published Apr 23, 2022
ktsuss versions 1.4 and prior has the uid set to root and does not drop privileges prior to... Critical Unreviewed
CVE-2011-2921 was published Apr 22, 2022
Improper Privilege Management in Apache Ozone Critical
CVE-2021-36372 was published for org.apache.ozone:ozone-main (Maven) Nov 23, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database