Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,293
Erlang
31
GitHub Actions
21
Go
2,061
Maven
5,000+
npm
3,744
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

960 advisories

Loading
A missing authentication for appliance registration vulnerability in Trend Micro Email Encryption... Critical Unreviewed
CVE-2018-6223 was published May 13, 2022
An issue was discovered on Teracue ENC-400 devices with firmware 2.56 and below. While the web... High Unreviewed
CVE-2018-20220 was published May 13, 2022
The web service on Epson WorkForce WF-2861 10.48 LQ22I3(Recovery-mode), WF-2861 10.51.LQ20I6, and... Critical Unreviewed
CVE-2018-19248 was published May 13, 2022
An issue was discovered on Foscam Opticam i5 devices with System Firmware 1.5.2.11 and... High Unreviewed
CVE-2018-19079 was published May 13, 2022
On D-Link DIR-823G 2018-09-19 devices, the GoAhead configuration allows /HNAP1 RunReboot commands... High Unreviewed
CVE-2018-17880 was published May 13, 2022
IBM Security Identity Governance and Intelligence 5.2.3.2 and 5.2.4 could allow an attacker to... Moderate Unreviewed
CVE-2018-1757 was published May 13, 2022
IBM Security Key Lifecycle Manager 2.7 and 3.0 could allow an unauthenticated user to restart the... High Unreviewed
CVE-2018-1745 was published May 13, 2022
Missing authentication and improper input validation in KERUI Wifi Endoscope Camera (YPC99) allow... Critical Unreviewed
CVE-2018-13114 was published May 13, 2022
A vulnerability in the web interface of Cisco RV132W ADSL2+ Wireless-N VPN Routers and Cisco... Critical Unreviewed
CVE-2018-0127 was published May 13, 2022
Philips iSite and IntelliSpace PACS, iSite PACS, all versions, and IntelliSpace PACS, all... High Unreviewed
CVE-2018-17906 was published May 13, 2022
The Conexus telemetry protocol utilized within Medtronic MyCareLink Monitor versions 24950 and... Moderate Unreviewed
CVE-2019-6538 was published May 13, 2022
A vulnerability in the development shell (devshell) authentication for Cisco Aironet Series... High Unreviewed
CVE-2019-1654 was published May 13, 2022
An issue was discovered on the NEC Aterm WG2600HP2 1.0.2. The router has a set of web service... High Unreviewed
CVE-2017-12575 was published May 13, 2022
D-Link routers with the mydlink feature have some web interfaces without authentication... High Unreviewed
CVE-2019-7642 was published May 13, 2022
The ES File Explorer File Manager application through 4.1.9.7.4 for Android allows remote... High Unreviewed
CVE-2019-6447 was published May 13, 2022
A vulnerability has been identified in DIGSI 4 (All versions < V4.92), EN100 Ethernet module DNP3... High Unreviewed
CVE-2018-4840 was published May 13, 2022
VMware VMware Fusion (11.x before 11.0.3) contains a security vulnerability due to certain... High Unreviewed
CVE-2019-5514 was published May 13, 2022
A design flaw issue was found in the Red Hat OpenStack Platform director use of TripleO to enable... Critical Unreviewed
CVE-2017-2637 was published May 13, 2022
Summer Baby Zoom Wifi Monitor & Internet Viewing System allows remote attackers to bypass... Critical Unreviewed
CVE-2015-2888 was published May 13, 2022
The web management interface in Siemens RuggedCom ROS before 3.11, ROS 3.11 before 3.11.5 for... Moderate Unreviewed
CVE-2014-2590 was published May 13, 2022
Windows LSA Spoofing Vulnerability. High Unreviewed
CVE-2022-26925 was published May 11, 2022
The Popup by Supsystic WordPress plugin before 1.10.9 does not have any authentication and... Moderate Unreviewed
CVE-2022-0424 was published May 10, 2022
On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x... Critical Unreviewed
CVE-2022-1388 was published May 6, 2022
On all versions 1.3.x (fixed in 1.4.0) NGINX Service Mesh control plane endpoints are exposed to... Moderate Unreviewed
CVE-2022-27495 was published May 6, 2022
The telnet daemon (telnetd) in MIT krb5 before 1.6.1 allows remote attackers to bypass... High Unreviewed
CVE-2007-0956 was published May 3, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database