GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
884 advisories
Filter by severity
In createAdminSupportIntent of DevicePolicyManagerService.java, there is a possible way to...
Low
Unreviewed
CVE-2021-0983
was published
Dec 16, 2021
Linux kernel 2.6.33 and 2.6.34.y does not initialize the kvm_vcpu_events->interrupt.pad structure...
Low
Unreviewed
CVE-2010-4525
was published
May 17, 2022
HP Asset Manager 9.40 and 9.41 before 9.41.11103 P4-rev1 and 9.50 before 9.50.11925 P3 allows...
Low
Unreviewed
CVE-2015-5448
was published
May 17, 2022
The Citibank Citi Mobile app before 2.0.3 for iOS stores account data in a file, which allows...
Low
Unreviewed
CVE-2010-2913
was published
May 17, 2022
Lockbox in EMC Documentum D2 before 4.5 uses a hardcoded passphrase when a server lacks a D2...
Low
Unreviewed
CVE-2015-4537
was published
May 17, 2022
bootp in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to obtain...
Low
Unreviewed
CVE-2015-3778
was published
May 17, 2022
Exposure of Sensitive Information in Find My Mobile prior to version 7.2.25.14 allows local...
Low
Unreviewed
CVE-2022-36878
was published
Sep 10, 2022
Improper Access Control vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.10.0...
Low
Unreviewed
CVE-2020-7262
was published
May 24, 2022
IBM Cloud Pak System 2.3 could allow a local user in some situations to view the artifacts of...
Low
Unreviewed
CVE-2021-20478
was published
May 24, 2022
A flaw was found in Ansible Tower when running jobs. This flaw allows an attacker to access the...
Low
Unreviewed
CVE-2020-10698
was published
May 24, 2022
A flaw was found in the Linux kernel in versions before 5.4.92 in the BPF protocol. This flaw...
Low
Unreviewed
CVE-2021-20239
was published
May 24, 2022
Citrix Presentation Server Client for Windows before 10.200 does not clear "credential...
Low
Unreviewed
CVE-2008-6561
was published
May 17, 2022
NCH Reflect CRM 3.01 allows local users to discover cleartext user account information by reading...
Low
Unreviewed
CVE-2021-37468
was published
May 24, 2022
Printing UIKit in Apple iOS before 10 mishandles environment variables, which allows local users...
Low
Unreviewed
CVE-2016-4749
was published
May 17, 2022
Apple iOS before 10, when Handoff for Messages is used, does not ensure that a Messages signin...
Low
Unreviewed
CVE-2016-4740
was published
May 17, 2022
Unspecified vulnerability in the search feature in Sun Java System LDAP JDK before 4.20 allows...
Low
Unreviewed
CVE-2008-4747
was published
May 17, 2022
Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11...
Low
Unreviewed
CVE-2016-5618
was published
May 17, 2022
An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue...
Low
Unreviewed
CVE-2016-7620
was published
May 17, 2022
An issue was discovered in certain Apple products. iOS before 10.2 is affected. The issue...
Low
Unreviewed
CVE-2016-7653
was published
May 17, 2022
Unspecified vulnerability in the Solaris Cluster component in Oracle Sun Systems Products Suite 4...
Low
Unreviewed
CVE-2016-5508
was published
May 17, 2022
An issue was discovered in certain Apple products. iOS before 10.2 is affected. The issue...
Low
Unreviewed
CVE-2016-7664
was published
May 17, 2022
An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue...
Low
Unreviewed
CVE-2016-7624
was published
May 17, 2022
Vulnerability in the RDBMS Security component of Oracle Database Server. The supported version...
Low
Unreviewed
CVE-2017-3240
was published
May 17, 2022
IBM Maximo Asset Management 7.1, 7.5, and 7.6 could allow a local user to obtain sensitive...
Low
Unreviewed
CVE-2017-1176
was published
May 17, 2022
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel...
Low
Unreviewed
CVE-2017-3498
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API