Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,850
Erlang
36
GitHub Actions
34
Go
2,480
Maven
5,000+
npm
4,097
NuGet
734
pip
3,910
Pub
12
RubyGems
945
Rust
1,014
Swift
39
Unreviewed advisories
All unreviewed
5,000+

512 advisories

Loading
** DISPUTED ** An issue was discovered in SMA Solar Technology products. The inverters make use... Critical Unreviewed
CVE-2017-9859 was published May 13, 2022
An issue was discovered on Mimosa Client Radios before 2.2.3. In the device's web interface,... High Unreviewed
CVE-2017-9136 was published May 13, 2022
OceanStor 5800 V3 with software V300R002C00 and V300R002C10, OceanStor 6900 V3 V300R001C00 has an... Moderate Unreviewed
CVE-2017-8157 was published May 13, 2022
Novell iManager 2.7 before SP7 Patch 9, NetIQ iManager 3.x before 3.0.2.1, Novell eDirectory 8.8... High Unreviewed
CVE-2017-5186 was published May 13, 2022
VMware vSphere Data Protection (VDP) 6.1.x, 6.0.x, 5.8.x, and 5.5.x locally stores vCenter Server... Critical Unreviewed
CVE-2017-4917 was published May 13, 2022
Cavium Nitrox SSL, Nitrox V SSL, and TurboSSL software development kits (SDKs) allow remote... High Unreviewed
CVE-2017-17428 was published May 13, 2022
Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway 10.5 before build 67... Moderate Unreviewed
CVE-2017-17382 was published May 13, 2022
In the "NQ Contacts Backup & Restore" application 1.1 for Android, DES encryption with a static... High Unreviewed
CVE-2017-15998 was published May 13, 2022
In the "NQ Contacts Backup & Restore" application 1.1 for Android, RC4 encryption is used to... High Unreviewed
CVE-2017-15997 was published May 13, 2022
IBM Security Guardium 10.0 Database Activity Monitor uses weaker than expected cryptographic... High Unreviewed
CVE-2017-1598 was published May 13, 2022
IBM Spectrum Protect 7.1 and 8.1 (formerly Tivoli Storage Manager) Server uses weak encryption... Moderate Unreviewed
CVE-2017-1339 was published May 13, 2022
A Padding Oracle exists in OSCI-Transport 1.2 as used in OSCI Transport Library 1.6.1 (Java) and... Moderate Unreviewed
CVE-2017-10668 was published May 13, 2022
Beckhoff TwinCAT 3 supports communication over ADS. ADS is a protocol for industrial automation... Moderate Unreviewed
CVE-2017-16718 was published May 13, 2022
IBM Sterling B2B Integrator Standard Edition (IBM Sterling File Gateway 2.2.0 through 2.2.6) uses... Moderate Unreviewed
CVE-2017-1575 was published May 13, 2022
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 uses... Moderate Unreviewed
CVE-2017-1571 was published May 13, 2022
The default SSH configuration in Rapid7 Nexpose hardware appliances shipped before June 2017 does... High Unreviewed
CVE-2017-5243 was published May 13, 2022
IBM GSKit (IBM DB2 for Linux, UNIX and Windows 9.7, 10.1, 10.5, and 11.1) uses weaker than... Moderate Unreviewed
CVE-2018-1428 was published May 13, 2022
Philips IntelliSpace Portal all versions of 8.0.x, and 7.0.x have a vulnerability using SSL... High Unreviewed
CVE-2018-5458 was published May 13, 2022
A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325... High Unreviewed
CVE-2019-1828 was published May 13, 2022
A vulnerability in SonicWall SonicOS and SonicOSv TLS CBC Cipher allow remote attackers to obtain... High Unreviewed
CVE-2019-7477 was published May 13, 2022
cipher/elgamal.c in Libgcrypt through 1.8.2, when used to encrypt messages directly, improperly... High Unreviewed
CVE-2018-6829 was published May 13, 2022
Citrix NetScaler Gateway 12.1 before build 50.31, 12.0 before build 60.9, 11.1 before build 60.14... Moderate Unreviewed
CVE-2019-6485 was published May 13, 2022
In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the ISAKMP dissector could crash. This was... Moderate Unreviewed
CVE-2019-5719 was published May 13, 2022
An information disclosure vulnerability exists when the Windows TCP/IP stack improperly handles... High Unreviewed
CVE-2019-0688 was published May 13, 2022
An issue was discovered in iDashboards 9.6b. The SSO implementation is affected by a weak... High Unreviewed
CVE-2018-7211 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database