Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,344
Erlang
31
GitHub Actions
22
Go
2,111
Maven
5,000+
npm
3,767
NuGet
680
pip
3,453
Pub
12
RubyGems
892
Rust
888
Swift
37
Unreviewed advisories
All unreviewed
5,000+

1,139 advisories

Loading
In the default privileges of NFC, there is a possible local bypass of user interaction... High Unreviewed
CVE-2019-2114 was published May 24, 2022
In startActivityMayWait of ActivityStarter.java, there is a possible incorrect Activity launch... High Unreviewed
CVE-2019-2173 was published May 24, 2022
An issue was discovered in BMC Patrol Agent 9.0.10i. Weak execution permissions on the... High Unreviewed
CVE-2019-17044 was published May 24, 2022
Ubisoft Uplay 92.0.0.6280 has Insecure Permissions. High Unreviewed
CVE-2019-14737 was published May 24, 2022
An issue was discovered in BMC Patrol Agent 9.0.10i. Weak execution permissions on the... High Unreviewed
CVE-2019-17043 was published May 24, 2022
A vulnerability in the CLI of Cisco TelePresence Collaboration Endpoint (CE) Software could allow... Moderate Unreviewed
CVE-2019-15962 was published May 24, 2022
Harbor API has a Broken Access Control vulnerability. The vulnerability allows project... High Unreviewed
CVE-2019-16919 was published May 24, 2022
Jenkins Kubernetes CI/CD Plugin vulnerable to Improper Authorization Moderate
CVE-2019-10469 was published for com.elasticbox.jenkins-ci.plugins:kubernetes-ci (Maven) May 24, 2022
Jenkins Dynatrace Plugin contains Incorrect Default Permissions Moderate
CVE-2019-10463 was published for org.jenkins-ci.plugins:dynatrace-dashboard (Maven) May 24, 2022
Jenkins Kubernetes CI/CD Plugin vulnerable to Credential Enumeration Moderate
CVE-2019-10470 was published for com.elasticbox.jenkins-ci.plugins:kubernetes-ci (Maven) May 24, 2022
Jenkins Deploy WebLogic Plugin missing permission check Moderate
CVE-2019-10465 was published for org.jenkins-ci.plugins:weblogic-deployer-plugin (Maven) May 24, 2022
Jenkins Libvirt Slaves Plugin vlnerable to Credential Enumeration Moderate
CVE-2019-10473 was published for org.jenkins-ci.plugins:libvirt-slave (Maven) May 24, 2022
Jenkins Global Post Script Plugin missing permission check Moderate
CVE-2019-10474 was published for org.jenkins-ci.plugins:global-post-script (Maven) May 24, 2022
Jenkins Libvirt Slaves Plugin vlnerable to Incorrect Default Permissions Moderate
CVE-2019-10472 was published for org.jenkins-ci.plugins:libvirt-slave (Maven) May 24, 2022
An issue was discovered on Mitsubishi Electric ME-RTU devices through 2.02 and INEA ME-RTU... Moderate Unreviewed
CVE-2019-14925 was published May 24, 2022
In JetBrains TeamCity before 2019.1.2, secure values could be exposed to users with the "View... Moderate Unreviewed
CVE-2019-18366 was published May 24, 2022
In JetBrains TeamCity before 2019.1.2, a non-destructive operation could be performed by a user... Moderate Unreviewed
CVE-2019-18367 was published May 24, 2022
In JetBrains YouTrack before 2019.2.55152, removing tags from the issues list without the... Moderate Unreviewed
CVE-2019-18369 was published May 24, 2022
The Symantec SONAR component, prior to 12.0.2, may be susceptible to a tamper protection bypass... Moderate Unreviewed
CVE-2019-12752 was published May 24, 2022
A vulnerability in the HTTP traffic filtering component of Cisco Firepower Threat Defense... Moderate Unreviewed
CVE-2019-1982 was published May 24, 2022
Improper directory permissions in Intel(R) PROSet/Wireless WiFi Software before version 21.40 may... High Unreviewed
CVE-2019-11155 was published May 24, 2022
Scanguard through 2019-11-12 on Windows has Insecure Permissions for the installation directory,... Moderate Unreviewed
CVE-2019-18895 was published May 24, 2022
In Vtiger 7.x before 7.2.0, the My Preferences saving functionality allows a user without... High Unreviewed
CVE-2019-19202 was published May 24, 2022
Cloudera CDH has Insecure Permissions because ALL cannot be revoked.This affects 5.x through 5.15... High Unreviewed
CVE-2018-17860 was published May 24, 2022
All Samba versions 4.x.x before 4.9.17, 4.10.x before 4.10.11 and 4.11.x before 4.11.3 have an... Low Unreviewed
CVE-2019-14861 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database