GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,704
Composer 4,237
Erlang 31
GitHub Actions 20
Go 2,000
Maven 5,183
npm 3,711
NuGet 661
pip 3,383
Pub 11
RubyGems 885
Rust 849
Swift 36

Unreviewed advisories

All unreviewed 235,466

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

23,712 advisories

Filter by severity

Sort by

Least recently updated

An issue was discovered in Honeywell XL Web II controller XL1000C500 XLWebExe-2-01-00 and prior,... Critical Unreviewed

CVE-2017-5142 was published May 13, 2022

Firejail before 0.9.44.4, when running on a Linux kernel before 4.8, allows context-dependent... Critical Unreviewed

CVE-2017-5206 was published May 13, 2022

The cache directory on the local file system is set to be world writable. Firefox defaults to... Critical Unreviewed

CVE-2017-5397 was published May 13, 2022

VMware vCenter Server 5.5, 6.0, 6.5 allows vSphere users with certain, limited vSphere privileges... Critical Unreviewed

CVE-2017-4919 was published May 13, 2022

An issue was discovered in Pivotal PCF Elastic Runtime 1.6.x versions prior to 1.6.65, 1.7.x... Critical Unreviewed

CVE-2017-4955 was published May 13, 2022

VMware vCenter Server (6.5 prior to 6.5 U1) contains an information disclosure vulnerability.... Critical Unreviewed

CVE-2017-4923 was published May 13, 2022

An issue with incorrect ownership model of "privateBrowsing" information exposed through... Critical Unreviewed

CVE-2017-5468 was published May 13, 2022

A vulnerability in the Intel Deep Learning Training Tool Beta 1 allows a network attacker to... Critical Unreviewed

CVE-2017-5719 was published May 13, 2022

A mechanism to bypass file system access protections in the sandbox using the file system request... Critical Unreviewed

CVE-2017-5456 was published May 13, 2022

A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.3... Critical Unreviewed

CVE-2017-5820 was published May 13, 2022

PEAR HTML_AJAX 0.3.0 through 0.5.7 has a PHP Object Injection Vulnerability in the PHP Serializer... Critical Unreviewed

CVE-2017-5677 was published May 13, 2022

OxygenOS before version 4.0.2, on OnePlus 3 and 3T, has two hidden fastboot oem commands ... Critical Unreviewed

CVE-2017-5626 was published May 13, 2022

Revive Adserver before 4.0.1 allows remote attackers to execute arbitrary code via serialized... Critical Unreviewed

CVE-2017-5830 was published May 13, 2022

A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.3... Critical Unreviewed

CVE-2017-5821 was published May 13, 2022

A vulnerability where WebExtensions can download and attempt to open a file of some non... Critical Unreviewed

CVE-2017-7821 was published May 13, 2022

A Remote Gain Privileged Access vulnerability in HPE Vertica Analytics Platform version v4.1 and... Critical Unreviewed

CVE-2017-5802 was published May 13, 2022

Escalation of privilege vulnerability in admin portal for Intel Unite App versions 3.1.32.12, 3.1... Critical Unreviewed

CVE-2017-5738 was published May 13, 2022

HPE LoadRunner before 12.53 Patch 4 and HPE Performance Center before 12.53 Patch 4 allow remote... Critical Unreviewed

CVE-2017-5789 was published May 13, 2022

An issue was discovered in Zammad before 1.0.4, 1.1.x before 1.1.3, and 1.2.x before 1.2.1.... Critical Unreviewed

CVE-2017-5619 was published May 13, 2022

A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.3... Critical Unreviewed

CVE-2017-5823 was published May 13, 2022

CSRF token bypass in GeniXCMS before 1.0.2 could result in escalation of privileges. The... Critical Unreviewed

CVE-2017-5959 was published May 13, 2022

The Symantec Messaging Gateway can encounter an issue of remote code execution, which describes a... Critical Unreviewed

CVE-2017-6326 was published May 13, 2022

The UMA product with software V200R001 and V300R001 has a privilege elevation vulnerability due... Critical Unreviewed

CVE-2017-8119 was published May 13, 2022

An issue was discovered in Zammad before 1.0.4, 1.1.x before 1.1.3, and 1.2.x before 1.2.1,... Critical Unreviewed

CVE-2017-6080 was published May 13, 2022

In ABB IP GATEWAY 3.39 and prior, some configuration files contain passwords stored in plain-text... Critical Unreviewed

CVE-2017-7933 was published May 13, 2022

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

23,712 advisories