Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,300
Erlang
31
GitHub Actions
21
Go
2,069
Maven
5,000+
npm
3,744
NuGet
668
pip
3,429
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+

1,100 advisories

Loading
An elevation of privilege vulnerability exists in Active Directory Forest trusts due to a default... Moderate Unreviewed
CVE-2019-0683 was published May 13, 2022
The Tomcat package on Red Hat Enterprise Linux (RHEL) 7, Fedora, CentOS, Oracle Linux, and... High Unreviewed
CVE-2016-5425 was published May 13, 2022
Atlassian Confluence starting with 4.3.0 before 6.2.1 did not check if a user had permission to... Moderate Unreviewed
CVE-2017-9505 was published May 13, 2022
Google Chrome before 11.0.696.57 does not properly implement the tabs permission for extensions,... Moderate Unreviewed
CVE-2011-1435 was published May 13, 2022
The drag-and-drop implementation in Google Chrome before 13.0.782.107 on Linux does not properly... Moderate Unreviewed
CVE-2011-2782 was published May 13, 2022
Google Chrome before 14.0.835.163 uses incorrect permissions for non-gallery pages, which has... Moderate Unreviewed
CVE-2011-2859 was published May 13, 2022
An Incorrect Default Permissions issue was discovered in OSIsoft PI Data Archive versions 2017... High Unreviewed
CVE-2018-7533 was published May 13, 2022
Exploiting Incorrectly Configured Access Control Security Levels vulnerability in McAfee Data... High Unreviewed
CVE-2018-6683 was published May 13, 2022
It was discovered that sos-collector does not properly set the default permissions of newly... Moderate Unreviewed
CVE-2018-14650 was published May 13, 2022
Incorrect default permissions vulnerability in synouser.conf in Synology Diskstation Manager (DSM... Moderate Unreviewed
CVE-2018-13286 was published May 13, 2022
Incorrect default permissions vulnerability in synouser.conf in Synology Router Manager (SRM)... Moderate Unreviewed
CVE-2018-13287 was published May 13, 2022
An Incorrect Default Permissions issue was discovered in Schneider Electric Wonderware InduSoft... High Unreviewed
CVE-2017-7968 was published May 13, 2022
An Incorrect Default Permissions issue was discovered in AzeoTech DAQFactory versions prior to 17... High Unreviewed
CVE-2017-12699 was published May 13, 2022
A vulnerability in the web-based user interface (web UI) of Cisco IOS XE 16.2 could allow an... High Unreviewed
CVE-2017-12230 was published May 13, 2022
Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw, allowing a sysops to undelete pages,... Moderate Unreviewed
CVE-2017-0369 was published May 13, 2022
An elevation of privilege vulnerability in the Android media framework (mediaanalytics). Product:... Critical Unreviewed
CVE-2017-0847 was published May 13, 2022
Jenkins Build Step Plugin fails to check Item/Build permission Moderate
CVE-2017-1000089 was published for org.jenkins-ci.plugins:pipeline-build-step (Maven) May 13, 2022
Parameterized Trigger Plugin fails to check Item/Build permission Moderate
CVE-2017-1000084 was published for org.jenkins-ci.plugins:parameterized-trigger (Maven) May 13, 2022
Incorrect Default Permissions in Supervisor High
CVE-2017-11610 was published for supervisor (pip) May 13, 2022
HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) before 4.0.24 uses weak... High Unreviewed
CVE-2017-11741 was published May 13, 2022
An unspecified server utility in NoMachine before 5.3.10 on Mac OS X and Linux allows... High Unreviewed
CVE-2017-12763 was published May 13, 2022
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 might create files using the default... High Unreviewed
CVE-2017-1382 was published May 13, 2022
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware... High Unreviewed
CVE-2017-14424 was published May 13, 2022
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware... High Unreviewed
CVE-2017-14427 was published May 13, 2022
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware... High Unreviewed
CVE-2017-14425 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database