Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+

11,148 advisories

Loading
Utah-glx in Mesa before 3.3-14 on Mandrake Linux 7.2 allows local users to overwrite arbitrary... Low Unreviewed
CVE-2001-0474 was published Apr 30, 2022
Cisco CBOS 2.3.0.053 sends output of the "sh nat" (aka "show nat") command to the terminal of the... Low Unreviewed
CVE-2001-0444 was published Apr 30, 2022
Preview version of Timbuktu for Mac OS X allows local users to modify System Preferences without... Low Unreviewed
CVE-2001-0438 was published Apr 30, 2022
Vulnerability in exuberant-ctags before 3.2.4-0.1 insecurely creates temporary files. Low Unreviewed
CVE-2001-0430 was published Apr 30, 2022
sgml-tools (aka sgmltools) before 1.0.9-15 creates temporary files with insecure permissions,... Low Unreviewed
CVE-2001-0416 was published Apr 30, 2022
Kerberos 4 (aka krb4) allows local users to overwrite arbitrary files via a symlink attack on new... Low Unreviewed
CVE-2001-0417 was published Apr 30, 2022
Samba before 2.2.0 allows local attackers to overwrite arbitrary files via a symlink attack using... Low Unreviewed
CVE-2001-0406 was published Apr 30, 2022
vim (aka gvim) allows local users to modify files being edited by other users via a symlink... Low Unreviewed
CVE-2001-0409 was published Apr 30, 2022
ppd in Reliant Sinix allows local users to corrupt arbitrary files via a symlink attack in the ... Low Unreviewed
CVE-2001-0384 was published Apr 30, 2022
The default configuration of the Dr. Watson program in Windows NT and Windows 2000 generates user... Low Unreviewed
CVE-2001-0373 was published Apr 30, 2022
Microsoft Windows 2000 telnet service allows a local user to make a certain system call that... Low Unreviewed
CVE-2001-0351 was published Apr 30, 2022
Windows 98 and Windows 2000 Java clients allow remote attackers to cause a denial of service via... Low Unreviewed
CVE-2001-0324 was published Apr 30, 2022
Race condition in ptrace in Linux kernel 2.4 and 2.2 allows local users to gain privileges by... Low Unreviewed
CVE-2001-0317 was published Apr 30, 2022
oidldapd 2.1.1.1 in Oracle 8.1.7 records log files in a directory (ldaplog) that has world... Low Unreviewed
CVE-2001-0300 was published Apr 30, 2022
VERITAS Cluster Server (VCS) 1.3.0 on Solaris allows local users to cause a denial of service ... Low Unreviewed
CVE-2001-0287 was published Apr 30, 2022
Moby Netsuite Web Server 1.02 allows remote attackers to cause a denial of service, and possibly... Low Unreviewed
CVE-2001-0275 was published Apr 30, 2022
pgp4pine Pine/PGP interface version 1.75-6 does not properly check to see if a public key has... Low Unreviewed
CVE-2001-0273 was published Apr 30, 2022
ASCII Armor parser in Windows PGP 7.0.3 and earlier allows attackers to create files in arbitrary... Low Unreviewed
CVE-2001-0265 was published Apr 30, 2022
Microsoft Windows 2000 Encrypted File System does not properly destroy backups of files that are... Low Unreviewed
CVE-2001-0261 was published Apr 30, 2022
ssh-keygen in ssh 1.2.27 - 1.2.30 with Secure-RPC can allow local attackers to recover a SUN-DES... Low Unreviewed
CVE-2001-0259 was published Apr 30, 2022
Vulnerability in Support Tools Manager (xstm,cstm,stm) in HP-UX 11.11 and earlier allows local... Low Unreviewed
CVE-2001-0219 was published Apr 30, 2022
webmin 0.84 and earlier allows local users to overwrite and create arbitrary files via a symlink... Low Unreviewed
CVE-2001-0222 was published Apr 30, 2022
sash before 3.4-4 in Debian GNU/Linux does not properly clone /etc/shadow, which makes it world... Low Unreviewed
CVE-2001-0195 was published Apr 30, 2022
eEye Iris 1.01 beta allows remote attackers to cause a denial of service via a malformed packet,... Low Unreviewed
CVE-2001-0184 was published Apr 30, 2022
kdesu program in KDE2 (KDE before 2.2.0-6) does not properly verify the owner of a UNIX socket... Low Unreviewed
CVE-2001-0178 was published Apr 30, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database