Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+

691 advisories

Loading
Adobe Connect versions 9.7.5 and earlier have an Insecure Library Loading vulnerability.... Critical Unreviewed
CVE-2018-12805 was published May 13, 2022
A DLL injection vulnerability in the Intel IoT Developers Kit 4.0 installer may allow an... Moderate Unreviewed
CVE-2018-12163 was published May 13, 2022
A DLL Hijacking vulnerability in the programming software in Schneider Electric's SoMachine HVAC... High Unreviewed
CVE-2017-7966 was published May 13, 2022
In Adam Kropelin adk0212 APC UPS Daemon through 3.14.14, the default installation of APCUPSD... High Unreviewed
CVE-2017-7884 was published May 13, 2022
The "pingsender" executable used by the Firefox Health Report dynamically loads a system copy of... High Unreviewed
CVE-2017-7836 was published May 13, 2022
Microsoft Skype 7.16.0.102 contains a vulnerability that could allow an unauthenticated, remote... Critical Unreviewed
CVE-2017-6517 was published May 13, 2022
Code injection vulnerability in Avira Total Security Suite 15.0 (and earlier), Optimization Suite... High Unreviewed
CVE-2017-6417 was published May 13, 2022
Symantec VIP Access for Desktop prior to 2.2.4 can be susceptible to a DLL Pre-Loading... High Unreviewed
CVE-2017-6329 was published May 13, 2022
Code injection vulnerability in Avast Premier 12.3 (and earlier), Internet Security 12.3 (and... High Unreviewed
CVE-2017-5567 was published May 13, 2022
Code injection vulnerability in Trend Micro Maximum Security 11.0 (and earlier), Internet... High Unreviewed
CVE-2017-5565 was published May 13, 2022
Code injection vulnerability in AVG Ultimate 17.1 (and earlier), AVG Internet Security 17.1 (and... High Unreviewed
CVE-2017-5566 was published May 13, 2022
Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and... High Unreviewed
CVE-2017-3013 was published May 13, 2022
Adobe Digital Editions versions 4.5.4 and earlier contain an insecure library loading... Critical Unreviewed
CVE-2017-3092 was published May 13, 2022
Adobe Digital Editions versions 4.5.4 and earlier contain an insecure library loading... Critical Unreviewed
CVE-2017-3097 was published May 13, 2022
Adobe Digital Editions versions 4.5.4 and earlier contain an insecure library loading... Critical Unreviewed
CVE-2017-3090 was published May 13, 2022
Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and... High Unreviewed
CVE-2017-3012 was published May 13, 2022
If HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) 5.0.3 is installed but... High Unreviewed
CVE-2017-16777 was published May 13, 2022
mcmnm in BMC Patrol allows local users to gain privileges via a crafted libmcmclnx.so file in the... High Unreviewed
CVE-2017-13130 was published May 13, 2022
360 Total Security 9.0.0.1202 before 2017-07-07 allows Privilege Escalation via a Trojan horse... High Unreviewed
CVE-2017-12653 was published May 13, 2022
An insecure suid wrapper binary in the HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware... High Unreviewed
CVE-2017-12579 was published May 13, 2022
A successful exploit of these vulnerabilities requires the local user to load a crafted DLL file... High Unreviewed
CVE-2015-1014 was published May 13, 2022
A vulnerability in the routine that loads DLL files in Cisco Meeting App for Windows could allow... Moderate Unreviewed
CVE-2017-12266 was published May 13, 2022
A vulnerability in the Cisco FindIT Network Discovery Utility could allow an authenticated, local... High Unreviewed
CVE-2017-12314 was published May 13, 2022
An Uncontrolled Search Path Element issue was discovered in Advantech WebAccess versions prior to... High Unreviewed
CVE-2017-12717 was published May 13, 2022
An Uncontrolled Search Path or Element issue was discovered in i-SENS SmartLog Diabetes... High Unreviewed
CVE-2017-13993 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database