GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
65 advisories
Filter by severity
Apport reads and writes information on a crashed process to /proc/pid with elevated privileges....
Low
Unreviewed
CVE-2019-15790
was published
May 24, 2022
The virConnectGetDomainCapabilities() libvirt API, versions 4.x.x before 4.10.1 and 5.x.x before...
High
Unreviewed
CVE-2019-10167
was published
May 24, 2022
rkt through version 1.30.0 does not isolate processes in containers that are run with `rkt enter`...
High
Unreviewed
CVE-2019-10144
was published
May 24, 2022
rkt through version 1.30.0 does not isolate processes in containers that are run with `rkt enter`...
High
Unreviewed
CVE-2019-10145
was published
May 24, 2022
rkt through version 1.30.0 does not isolate processes in containers that are run with `rkt enter`...
High
Unreviewed
CVE-2019-10147
was published
May 24, 2022
It was discovered freeradius up to and including version 3.0.19 does not correctly configure...
High
Unreviewed
CVE-2019-10143
was published
May 24, 2022
A flaw was found in the way the Linux kernel handled exceptions delivered after a stack switch...
Moderate
Unreviewed
CVE-2018-10872
was published
May 13, 2022
The default OCI linux spec in oci/defaults{_linux}.go in Docker/Moby from 1.11 to current does...
Moderate
Unreviewed
CVE-2018-10892
was published
May 13, 2022
In Bender/ebee Charge Controllers in multiple versions are prone to Local privilege Escalation....
High
Unreviewed
CVE-2021-34591
was published
Apr 28, 2022
A vulnerability in the Tool Command Language (Tcl) interpreter of Cisco IOS XE Software could...
High
Unreviewed
CVE-2022-20676
was published
Apr 16, 2022
Authentication Bypass in keycloak
High
CVE-2020-27826
was published
for
org.keycloak:keycloak-core
(Maven)
Mar 18, 2022
Improper Privilege Management and Execution with Unnecessary Privileges in Kata Containers
Moderate
CVE-2020-2023
was published
for
github.com/kata-containers/agent
(Go)
Feb 15, 2022
Execution with Unnecessary Privileges in ipython
High
CVE-2022-21699
was published
for
ipython
(pip)
Jan 21, 2022
Code Injection, Race Condition, and Execution with Unnecessary Privileges in Ansible
High
CVE-2020-10684
was published
for
ansible
(pip)
Apr 7, 2021
Local Privilege Escalation in PyInstaller
High
CVE-2019-16784
was published
for
PyInstaller
(pip)
Jan 16, 2020
ProTip!
Advisories are also available from the
GraphQL API