GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,270
Erlang
31
GitHub Actions
21
Go
2,046
Maven
5,000+
npm
3,737
NuGet
663
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
541 advisories
Filter by severity
An API Privilege vulnerability in Cisco TelePresence Server Software could allow an...
Moderate
Unreviewed
CVE-2017-3815
was published
May 13, 2022
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: C API)....
Moderate
Unreviewed
CVE-2017-3305
was published
May 13, 2022
An issue was discovered in certain Apple products. iOS before 10.3 is affected. The issue...
Moderate
Unreviewed
CVE-2017-2412
was published
May 13, 2022
An issue was discovered in Enigmail before 1.9.9. A remote attacker can obtain cleartext content...
Moderate
Unreviewed
CVE-2017-17844
was published
May 13, 2022
IBM Integration Bus 9.0 and 10.0 transmits user credentials in plain in clear text which can be...
High
Unreviewed
CVE-2017-1694
was published
May 13, 2022
In the "NQ Contacts Backup & Restore" application 1.1 for Android, no HTTPS is used for...
Critical
Unreviewed
CVE-2017-15999
was published
May 13, 2022
Mirasys Video Management System (VMS) 6.x before 6.4.6, 7.x before 7.5.15, and 8.x before 8.1.1...
High
Unreviewed
CVE-2017-15290
was published
May 13, 2022
An unintended cleartext issue exists in Go before 1.8.4 and 1.9.x before 1.9.1. RFC 4954 requires...
Moderate
Unreviewed
CVE-2017-15042
was published
May 13, 2022
The Vibease Wireless Remote Vibrator app for Android and the Vibease Chat app for iOS use...
High
Unreviewed
CVE-2017-14486
was published
May 13, 2022
IBM Tivoli Endpoint Manager (IBM BigFix Platform 9.2 and 9.5) transmits sensitive or security...
Moderate
Unreviewed
CVE-2017-1232
was published
May 13, 2022
IBM Tivoli Monitoring Portal V6 client could allow a local attacker to gain elevated privileges...
High
Unreviewed
CVE-2017-1181
was published
May 13, 2022
Shotwell version 0.24.4 or earlier and 0.25.3 or earlier is vulnerable to an information...
High
Unreviewed
CVE-2017-1000024
was published
May 13, 2022
Gitlab Enterprise Edition version 10.1.0 is vulnerable to an insufficiently protected credential...
High
Unreviewed
CVE-2017-0925
was published
May 13, 2022
A vulnerability in the auto discovery phase of Cisco Spark Hybrid Calendar Service could allow an...
High
Unreviewed
CVE-2017-12310
was published
May 13, 2022
Abbott Laboratories Accent and Anthem pacemakers manufactured prior to Aug 28, 2017 transmit...
Moderate
Unreviewed
CVE-2017-12716
was published
May 13, 2022
An Information Exposure issue was discovered in ProMinent MultiFLEX M10a Controller web interface...
Moderate
Unreviewed
CVE-2017-14009
was published
May 13, 2022
In versions 4.3.2-R4 and prior of Cambium Networks cnPilot firmware, an undocumented, root...
High
Unreviewed
CVE-2017-5259
was published
May 13, 2022
A vulnerability in the detection engine of Cisco Firepower System Software could allow an...
Moderate
Unreviewed
CVE-2018-0281
was published
May 13, 2022
A vulnerability in the detection engine of Cisco Firepower System Software could allow an...
Moderate
Unreviewed
CVE-2018-0283
was published
May 13, 2022
Medtronic MMT 508 MiniMed insulin pump, 522 / MMT - 722 Paradigm REAL-TIME, 523 / MMT - 723...
Moderate
Unreviewed
CVE-2018-10634
was published
May 13, 2022
IBM BigFix Platform 9.2 and 9.5 transmits sensitive or security-critical data in clear text in a...
High
Unreviewed
CVE-2018-1600
was published
May 13, 2022
The Auto-Maskin DCU 210E, RP-210E, and Marine Pro Observer Android App transmit sensitive or...
Moderate
Unreviewed
CVE-2018-5401
was published
May 13, 2022
A Cleartext Transmission of Sensitive Information issue was discovered in Belden Hirschmann RS,...
Moderate
Unreviewed
CVE-2018-5471
was published
May 13, 2022
Philips e-Alert Unit (non-medical device), Version R2.1 and prior. The software transmits...
High
Unreviewed
CVE-2018-8842
was published
May 13, 2022
Echelon SmartServer 1 all versions, SmartServer 2 all versions prior to release 4.11.007, i.LON...
Critical
Unreviewed
CVE-2018-8855
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API