Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,300
Erlang
31
GitHub Actions
21
Go
2,069
Maven
5,000+
npm
3,744
NuGet
668
pip
3,429
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+

994 advisories

Loading
IBM General Parallel File System (GPFS) 3.5.x before 3.5.0.27 and 4.1.x before 4.1.1.2 and... Low Unreviewed
CVE-2015-4981 was published May 17, 2022
IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5.0.8 IFIX001, and 7.6.0 before... Low Unreviewed
CVE-2015-1951 was published May 17, 2022
The installer in IBM InfoSphere Information Server 8.5 through 11.3 before 11.3.1.2 allows local... Low Unreviewed
CVE-2015-1901 was published May 17, 2022
IDE Xcode Server in Apple Xcode before 7.0 does not ensure that server traffic is encrypted,... Low Unreviewed
CVE-2015-5910 was published May 17, 2022
Unspecified vulnerability in Powershell Operations in HP Operations Orchestration 9.x and 10.x... Low Unreviewed
CVE-2015-2108 was published May 17, 2022
The vivid_fb_ioctl function in drivers/media/platform/vivid/vivid-osd.c in the Linux kernel... Low Unreviewed
CVE-2015-7884 was published May 17, 2022
The backup implementation in Time Machine in Apple OS X before 10.11 allows local users to obtain... Low Unreviewed
CVE-2015-5854 was published May 17, 2022
IOStorageFamily in Apple iOS before 9 does not properly initialize an unspecified data structure,... Low Unreviewed
CVE-2015-5863 was published May 17, 2022
The convenience initializer in the Multipeer Connectivity component in Apple iOS before 9 does... Low Unreviewed
CVE-2015-5851 was published May 17, 2022
MantisBT before 1.2.18 does not properly check permissions when sending an email that indicates... Low Unreviewed
CVE-2014-9506 was published May 17, 2022
The xrstor function in arch/x86/xstate.c in Xen 4.x does not properly handle writes to the... Low Unreviewed
CVE-2016-3158 was published May 17, 2022
The UIKit View component in Apple iOS before 8.3 displays unblurred application snapshots in the... Low Unreviewed
CVE-2015-1116 was published May 17, 2022
Vulnerability in the Oracle GlassFish Server component of Oracle Fusion Middleware (subcomponent:... Low Unreviewed
CVE-2017-3239 was published May 17, 2022
IBM Kenexa LMS on Cloud allows web pages to be stored locally which can be read by another user... Low Unreviewed
CVE-2016-5938 was published May 17, 2022
Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services... Low Unreviewed
CVE-2016-8305 was published May 17, 2022
Apache Ambari before 2.1, as used in IBM Infosphere BigInsights 4.x before 4.1, stores a... Low Unreviewed
CVE-2015-4940 was published May 17, 2022
Cisco TelePresence Video Communication Server (VCS) X8.6 uses the same encryption key across... Low Unreviewed
CVE-2015-6414 was published May 17, 2022
An issue was discovered in certain Apple products. iOS before 10.2 is affected. The issue... Low Unreviewed
CVE-2016-7765 was published May 17, 2022
Cleanup errors in some data cache evictions for some Intel(R) Processors may allow an... Low Unreviewed
CVE-2020-0549 was published May 24, 2022
The phpinfo implementation in ext/standard/info.c in PHP before 5.4.30 and 5.5.x before 5.5.14... Low Unreviewed
CVE-2014-4721 was published May 17, 2022
The Cybozu kintone mobile application 1.x before 1.0.6 for Android allows attackers to discover... Low Unreviewed
CVE-2016-1185 was published May 17, 2022
Apple iOS before 9.0.2 does not properly restrict the options available on the lock screen, which... Low Unreviewed
CVE-2015-5923 was published May 17, 2022
IBM Tealeaf Customer Experience 8.x before 8.7.1.8847 FP10, 8.8.x before 8.8.0.9049 FP9, 9.0.0... Low Unreviewed
CVE-2015-4961 was published May 17, 2022
The Lock Screen component in Apple iOS before 8.3 does not properly enforce the limit on... Low Unreviewed
CVE-2015-1108 was published May 17, 2022
The QuickType feature in the Keyboards subsystem in Apple iOS before 8.3 allows physically... Low Unreviewed
CVE-2015-1106 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database