Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+

275 advisories

Loading
Dahua DHI-HCVR7216A-S3 devices with NVR Firmware 3.210.0001.10 2016-06-06, Camera Firmware 2.400... Moderate Unreviewed
CVE-2017-6341 was published May 13, 2022
A vulnerability in the Autonomic Networking feature of Cisco IOS Software and Cisco IOS XE... Moderate Unreviewed
CVE-2017-6665 was published May 13, 2022
kpac/script.cpp in KDE kio before 5.32 and kdelibs before 4.14.30 calls the PAC FindProxyForURL... Moderate Unreviewed
CVE-2017-6410 was published May 13, 2022
An issue was discovered on OnePlus One and X devices. Due to a lenient updater-script on the... Moderate Unreviewed
CVE-2017-8851 was published May 13, 2022
An issue was discovered in certain Apple products. The Apple Support app before 1.2 for iOS is... Moderate Unreviewed
CVE-2017-7147 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13... Moderate Unreviewed
CVE-2017-7078 was published May 13, 2022
An issue was discovered on OnePlus One, X, 2, 3, and 3T devices. Due to a lenient updater-script... Moderate Unreviewed
CVE-2017-8850 was published May 13, 2022
SimpliSafe Original has Unencrypted Keypad Transmissions, which allows physically proximate... Moderate Unreviewed
CVE-2018-11402 was published May 13, 2022
SimpliSafe Original has Unencrypted Sensor Transmissions, which allows physically proximate... Moderate Unreviewed
CVE-2018-11399 was published May 13, 2022
An issue was discovered on Vgate iCar 2 Wi-Fi OBD2 Dongle devices. The data packets that are sent... Moderate Unreviewed
CVE-2018-11477 was published May 13, 2022
The SV3C HD Camera (L-SERIES V2.3.4.2103-S50-NTD-B20170508B and V2.3.4.2103-S50-NTD-B20170823B)... Moderate Unreviewed
CVE-2018-12674 was published May 13, 2022
The IIOP OpenJDK Subsystem in WildFly before version 14.0.0 does not honour configuration when... Moderate Unreviewed
CVE-2018-14627 was published May 13, 2022
The Google Cardboard application 1.8 for Android and 1.2 for iOS sends potentially private... Moderate Unreviewed
CVE-2018-19111 was published May 13, 2022
The Sky Go Desktop application 1.0.19-1 through 1.0.23-1 for Windows performs several requests... Moderate Unreviewed
CVE-2018-18908 was published May 13, 2022
Samsung Display Solutions App before 3.02 for Android allows man-in-the-middle attackers to spoof... Moderate Unreviewed
CVE-2018-6019 was published May 13, 2022
In Core Utilities, there is a possible log information disclosure. This could lead to local... Moderate Unreviewed
CVE-2022-20243 was published Aug 12, 2022
IBM Sterling File Gateway 2.2.0.0 through 6.0.1.0 displays sensitive information in HTTP requests... Moderate Unreviewed
CVE-2019-4280 was published May 24, 2022
Telepad allows an attacker (in a man-in-the-middle position between the server and a connected... Moderate Unreviewed
CVE-2022-45478 was published Dec 5, 2022
Fetchmail before 6.4.22 fails to enforce STARTTLS session encryption in some circumstances, such... Moderate Unreviewed
CVE-2021-39272 was published May 24, 2022
IBM Robotic Process Automation 20.12.0 through 21.0.2 defaults to HTTP in some RPA commands when... Moderate Unreviewed
CVE-2023-22863 was published Jan 18, 2023
Cleartext Transmission of Sensitive Information in Jenkins JIRA Pipeline Steps Plugin Moderate
CVE-2023-24440 was published for org.jenkins-ci.plugins:jira-steps (Maven) Jan 26, 2023
Connectwise Automate 2022.11 is vulnerable to Cleartext authentication. Authentication is being... Moderate Unreviewed
CVE-2023-23130 was published Feb 1, 2023
On BIG-IP 13.0.0-13.1.1.4, 12.1.0-12.1.4, 11.6.1-11.6.3.4, and 11.5.2-11.5.8, SNMP may expose... Moderate Unreviewed
CVE-2019-6613 was published May 24, 2022
On BIG-IP 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, 13.0.0-13.1.1.4, 12.1.0-12.1.4, 11.6.1-11.6.3.4, and... Moderate Unreviewed
CVE-2019-6640 was published May 24, 2022
Insecure transport protocol in Gradle Moderate
CVE-2019-11065 was published for org.gradle:gradle-core (Maven) May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database