Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
49
GitHub Actions
50
Go
3,630
Maven
5,000+
npm
5,000+
NuGet
928
pip
4,850
Pub
13
RubyGems
1,045
Rust
1,301
Swift
53
Unreviewed advisories
All unreviewed
5,000+

437 advisories

Loading
A vulnerability in the detection engine of Cisco Firepower System Software could allow an... Moderate Unreviewed
CVE-2018-0243 was published May 13, 2022
A vulnerability in the detection engine of Cisco Firepower System Software could allow an... Moderate Unreviewed
CVE-2018-0254 was published May 13, 2022
A vulnerability in Central Web Authentication (CWA) with FlexConnect Access Points (APs) for... Moderate Unreviewed
CVE-2018-0250 was published May 13, 2022
A vulnerability in the detection engine of Cisco Firepower System Software could allow an... Moderate Unreviewed
CVE-2018-0244 was published May 13, 2022
A vulnerability in the detection engine of Cisco Firepower Threat Defense software could allow an... Moderate Unreviewed
CVE-2018-0297 was published May 13, 2022
A vulnerability in the web UI of Cisco TelePresence Server Software could allow an... Moderate Unreviewed
CVE-2018-0326 was published May 13, 2022
A vulnerability in the VPN configuration management of Cisco FireSIGHT System Software could... Moderate Unreviewed
CVE-2018-0333 was published May 13, 2022
A vulnerability in the detection engine of Cisco FireSIGHT System Software could allow an... Moderate Unreviewed
CVE-2018-0384 was published May 13, 2022
A vulnerability in the detection engine of Cisco FireSIGHT System Software could allow an... High Unreviewed
CVE-2018-0383 was published May 13, 2022
Medtronic N'Vision Clinician Programmer 8840 N'Vision Clinician Programmer, all versions, and... Moderate Unreviewed
CVE-2018-10631 was published May 13, 2022
A vulnerability in the data acquisition (DAQ) component of Cisco Firepower Threat Defense (FTD)... High Unreviewed
CVE-2019-1669 was published May 13, 2022
Protection Mechanism Failure in Jenkins Script Security Plugin High
CVE-2019-1003000 was published for org.jenkins-ci.plugins:script-security (Maven) May 13, 2022
Script security sandbox bypass in Jenkins Job DSL Plugin Critical
CVE-2019-1003034 was published for org.jenkins-ci.plugins:job-dsl (Maven) May 13, 2022
westonsteimel Credited to westonsteimel
Script security sandbox bypass in Matrix Project Plugin Critical
CVE-2019-1003031 was published for org.jenkins-ci.plugins:matrix-project (Maven) May 13, 2022
westonsteimel Credited to westonsteimel
Script security sandbox bypass in Jenkins Email Extension Plugin Critical
CVE-2019-1003032 was published for org.jenkins-ci.plugins:email-ext (Maven) May 13, 2022
westonsteimel Credited to westonsteimel
Jenkins Groovy Plugin sandbox bypass vulnerability High
CVE-2019-1003033 was published for org.jenkins-ci.plugins:groovy (Maven) May 13, 2022
Sandbox bypass in Jenkins Pipeline: Groovy Plugin Critical
CVE-2019-1003030 was published for org.jenkins-ci.plugins.workflow:workflow-cps (Maven) May 13, 2022
westonsteimel Credited to westonsteimel
Sandbox Bypass in Script Security Plugin High
CVE-2019-1003005 was published for org.jenkins-ci.plugins:script-security (Maven) May 13, 2022
westonsteimel Credited to westonsteimel
Sandbox bypass in Script Security Plugin Critical
CVE-2019-1003029 was published for org.jenkins-ci.plugins:script-security (Maven) May 13, 2022
westonsteimel Credited to westonsteimel
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7... Moderate Unreviewed
CVE-2013-0431 was published May 5, 2022
The Ubuntu SELinux initscript before version 1:0.10 used touch to create a lockfile in a world... Moderate Unreviewed
CVE-2011-3151 was published Apr 22, 2022
A vulnerability in the automatic decryption process in Cisco Umbrella Secure Web Gateway (SWG)... Moderate Unreviewed
CVE-2022-20805 was published Apr 22, 2022
Philips Vue PACS versions 12.2.x.x and prior does not use or incorrectly uses a protection... Critical Unreviewed
CVE-2021-27497 was published Apr 3, 2022
Rockwell Automation FactoryTalk Services Platform v6.11 and earlier, if FactoryTalk Security is... High Unreviewed
CVE-2021-32960 was published Apr 3, 2022
Jenkins Pipeline: Deprecated Groovy Libraries Plugin Protection Mechanism Failure High
CVE-2022-25181 was published for org.jenkins-ci.plugins.workflow:workflow-cps-global-lib (Maven) Feb 16, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database