Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

507 advisories

Loading
SimpliSafe Original has Unencrypted Keypad Transmissions, which allows physically proximate... Moderate Unreviewed
CVE-2018-11402 was published May 13, 2022
SimpliSafe Original has Unencrypted Sensor Transmissions, which allows physically proximate... Moderate Unreviewed
CVE-2018-11399 was published May 13, 2022
Intuit Lacerte 2017 for Windows in a client/server environment transfers the entire customer list... High Unreviewed
CVE-2018-11338 was published May 13, 2022
Dell EMC NetWorker versions between 9.0 and 9.1.1.8 through 9.2.1.3, and the version 18.1.0.1... High Unreviewed
CVE-2018-11050 was published May 13, 2022
An issue was discovered on OnePlus One and X devices. Due to a lenient updater-script on the... Moderate Unreviewed
CVE-2017-8851 was published May 13, 2022
An issue was discovered on OnePlus One, X, 2, 3, and 3T devices. Due to a lenient updater-script... Moderate Unreviewed
CVE-2017-8850 was published May 13, 2022
The Themes App Honor 8 Lite Huawei mobile phones with software of versions before Prague... Moderate Unreviewed
CVE-2017-8154 was published May 13, 2022
An issue was discovered in certain Apple products. The Apple Support app before 1.2 for iOS is... Moderate Unreviewed
CVE-2017-7147 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves... High Unreviewed
CVE-2017-7133 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13... Moderate Unreviewed
CVE-2017-7078 was published May 13, 2022
A vulnerability in the Autonomic Networking feature of Cisco IOS Software and Cisco IOS XE... Moderate Unreviewed
CVE-2017-6665 was published May 13, 2022
kpac/script.cpp in KDE kio before 5.32 and kdelibs before 4.14.30 calls the PAC FindProxyForURL... Moderate Unreviewed
CVE-2017-6410 was published May 13, 2022
An issue was discovered on Dahua DHI-HCVR7216A-S3 3.210.0001.10 build 2016-06-06 devices. The... High Unreviewed
CVE-2017-6432 was published May 13, 2022
TYPO3 Information Disclosure Vulnerability Moderate
CVE-2017-6370 was published for typo3/cms (Composer) May 13, 2022
Dahua DHI-HCVR7216A-S3 devices with NVR Firmware 3.210.0001.10 2016-06-06, Camera Firmware 2.400... Moderate Unreviewed
CVE-2017-6341 was published May 13, 2022
During a routine security analysis, it was found that one of the ports in Apache Impala ... High Unreviewed
CVE-2017-5652 was published May 13, 2022
An API Privilege vulnerability in Cisco TelePresence Server Software could allow an... Moderate Unreviewed
CVE-2017-3815 was published May 13, 2022
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: C API).... Moderate Unreviewed
CVE-2017-3305 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 10.3 is affected. The issue... Moderate Unreviewed
CVE-2017-2412 was published May 13, 2022
An issue was discovered in Enigmail before 1.9.9. A remote attacker can obtain cleartext content... Moderate Unreviewed
CVE-2017-17844 was published May 13, 2022
IBM Integration Bus 9.0 and 10.0 transmits user credentials in plain in clear text which can be... High Unreviewed
CVE-2017-1694 was published May 13, 2022
In the "NQ Contacts Backup & Restore" application 1.1 for Android, no HTTPS is used for... Critical Unreviewed
CVE-2017-15999 was published May 13, 2022
Mirasys Video Management System (VMS) 6.x before 6.4.6, 7.x before 7.5.15, and 8.x before 8.1.1... High Unreviewed
CVE-2017-15290 was published May 13, 2022
An unintended cleartext issue exists in Go before 1.8.4 and 1.9.x before 1.9.1. RFC 4954 requires... Moderate Unreviewed
CVE-2017-15042 was published May 13, 2022
The Vibease Wireless Remote Vibrator app for Android and the Vibease Chat app for iOS use... High Unreviewed
CVE-2017-14486 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API