Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,321
Erlang
31
GitHub Actions
21
Go
2,079
Maven
5,000+
npm
3,747
NuGet
674
pip
3,435
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+

119 advisories

Loading
Microsoft Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607... High Unreviewed
CVE-2017-8562 was published May 13, 2022
Graphics in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows... High Unreviewed
CVE-2017-8556 was published May 13, 2022
Windows Cursor in Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold,... High Unreviewed
CVE-2017-8466 was published May 13, 2022
Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow a locally... High Unreviewed
CVE-2017-8494 was published May 13, 2022
Microsoft Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, Windows 10 Gold, 1511, 1607,... High Unreviewed
CVE-2017-8465 was published May 13, 2022
Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1,... High Unreviewed
CVE-2017-8563 was published May 13, 2022
Win32k in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows... High Unreviewed
CVE-2017-8577 was published May 13, 2022
Win32k in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows... High Unreviewed
CVE-2017-8578 was published May 13, 2022
Win32k in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows... High Unreviewed
CVE-2017-8581 was published May 13, 2022
Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1,... High Unreviewed
CVE-2017-8590 was published May 13, 2022
Microsoft Win32k in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows... High Unreviewed
CVE-2017-8593 was published May 13, 2022
The report-viewing feature in Pearson VUE Certiport Console 8 and IQSystem 7 before 2018-06-26... High Unreviewed
CVE-2018-12989 was published May 13, 2022
If a malicious attacker has used another vulnerability to gain full control over a content... High Unreviewed
CVE-2018-5163 was published May 13, 2022
The MSI installer in Verint Desktop Resources 15.2 allows an unprivileged local user to elevate... High Unreviewed
CVE-2020-12744 was published Oct 20, 2022
Possible access control violation while setting current permission for VMIDs due to improper... High Unreviewed
CVE-2021-30279 was published Jan 4, 2022
Unprivileged pod using `hostPath` can side-step active LSM when it is SELinux High
CVE-2021-43816 was published for github.com/containerd/containerd (Go) Jan 6, 2022
Improper permissions in the SafeNet Sentinel driver for Intel(R) Quartus(R) Prime Standard... High Unreviewed
CVE-2022-21203 was published Feb 11, 2022
An issue was discovered in Rehau devices that use a pCOWeb card BIOS v6.27, BOOT v5.00, web... High Unreviewed
CVE-2020-18329 was published Jan 26, 2023
The IHwAntiMalPlugin interface lacks permission verification. Successful exploitation of this... High Unreviewed
CVE-2022-48295 was published Feb 9, 2023
The bundle management module lacks permission verification in some APIs. Successful exploitation... High Unreviewed
CVE-2022-48301 was published Feb 9, 2023
A vulnerability in Hitachi Vantara Pentaho Business Analytics Server versions before 9.2.0.2 and... High Unreviewed
CVE-2021-45446 was published Nov 2, 2022
NVIDIA GPU Display Driver for Linux contains a vulnerability in an optional D-Bus configuration... High Unreviewed
CVE-2022-31608 was published Nov 19, 2022
in OpenHarmony v3.2.2 and prior versions allow a local attacker arbitrary file read and write... High Unreviewed
CVE-2023-43612 was published Nov 20, 2023
Insufficient macro permission validation of The Document Foundation LibreOffice allows an... High Unreviewed
CVE-2023-6186 was published Dec 11, 2023
Disabled permissions can be granted by Jenkins SSH2 Easy Plugin High
CVE-2023-41939 was published for org.jenkins-ci.plugins:ssh2easy (Maven) Sep 6, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database