Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+

339 advisories

Loading
A vulnerability in the Redis implementation used by the Cisco Policy Suite for Mobile and Cisco... Critical Unreviewed
CVE-2018-0181 was published May 13, 2022
An Improper Authorization issue was discovered in Sierra Wireless AirLink Raven XE, all versions... Critical Unreviewed
CVE-2017-6044 was published May 13, 2022
WiMAX routers based on the MediaTek SDK (libmtk) that use a custom httpd plugin are vulnerable to... Critical Unreviewed
CVE-2017-3216 was published May 13, 2022
A Missing Authentication for Critical Function issue was discovered in Schneider Electric... Critical Unreviewed
CVE-2017-13997 was published May 13, 2022
A Missing Authentication for Critical Function issue was discovered in OPW Fuel Management... Critical Unreviewed
CVE-2017-12733 was published May 13, 2022
Remote enabling and disabling admin interface in Gemalto's HASP SRM, Sentinel HASP and Sentinel... Critical Unreviewed
CVE-2017-12822 was published May 13, 2022
register_send.php on D-Link DIR-850L REV. B (with firmware through FW208WWb02) devices does not... Critical Unreviewed
CVE-2017-14417 was published May 13, 2022
Trustwave Secure Web Gateway (SWG) through 11.8.0.27 allows remote attackers to append an... Critical Unreviewed
CVE-2017-18001 was published May 13, 2022
VMware vCenter Server 5.5, 6.0, 6.5 allows vSphere users with certain, limited vSphere privileges... Critical Unreviewed
CVE-2017-4919 was published May 13, 2022
An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and... Critical Unreviewed
CVE-2017-6409 was published May 13, 2022
An issue was discovered on Humax Digital HG100R 2.0.6 devices. To download the backup file it's... Critical Unreviewed
CVE-2017-7315 was published May 13, 2022
An issue was discovered in Zoho ManageEngine Desktop Central 10.0.124 and 10.0.184: insufficient... Critical Unreviewed
CVE-2018-5339 was published May 13, 2022
Missing Authentication for Critical Function in Apache Cassandra Critical
CVE-2018-8016 was published for org.apache.cassandra:cassandra-all (Maven) May 13, 2022
MarkLee131
HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allow remote attackers... Critical Unreviewed
CVE-2016-2004 was published May 14, 2022
An issue was discovered in Zoho ManageEngine Desktop Central 10.0.124 and 10.0.184: missing... Critical Unreviewed
CVE-2018-5338 was published May 14, 2022
The JMX/RMI interface in Nasdaq BWise 5.0 does not require authentication for an SAP BO Component... Critical Unreviewed
CVE-2018-11247 was published May 14, 2022
In Schneider Electric Evlink Charging Station versions prior to v3.2.0-12_v1, the Web Interface... Critical Unreviewed
CVE-2018-7778 was published May 14, 2022
Contec Smart Home 4.15 devices do not require authentication for new_user.php, edit_user.php,... Critical Unreviewed
CVE-2018-9162 was published May 14, 2022
SAP NetWeaver System Landscape Directory, LM-CORE 7.10, 7.20, 7.30, 7.31, 7.40, does not perform... Critical Unreviewed
CVE-2018-2368 was published May 14, 2022
eQ-3 AG HomeMatic CCU2 2.29.22 devices have an open XML-RPC port without authentication. This can... Critical Unreviewed
CVE-2018-7301 was published May 14, 2022
A potential security vulnerability has been identified in HPE Application Performance Management ... Critical Unreviewed
CVE-2017-14350 was published May 17, 2022
Authentication Bypass vulnerability in the web interface in McAfee Advanced Threat Defense (ATD)... Critical Unreviewed
CVE-2017-4052 was published May 17, 2022
In Odoo 8.0, Odoo Community Edition 9.0 and 10.0, and Odoo Enterprise Edition 9.0 and 10.0,... Critical Unreviewed
CVE-2017-10804 was published May 17, 2022
OSRAM SYLVANIA Osram Lightify Home before 2016-07-26 allows remote attackers to execute arbitrary... Critical Unreviewed
CVE-2016-5053 was published May 17, 2022
An issue was discovered in Smiths-Medical CADD-Solis Medication Safety Software, Version 1.0; 2.0... Critical Unreviewed
CVE-2016-8355 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database