Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,850
Erlang
36
GitHub Actions
34
Go
2,480
Maven
5,000+
npm
4,097
NuGet
734
pip
3,910
Pub
12
RubyGems
945
Rust
1,014
Swift
39
Unreviewed advisories
All unreviewed
5,000+

441 advisories

Loading
A vulnerability in the Open Systems Gateway initiative (OSGi) interface of Cisco Policy Suite... Critical Unreviewed
CVE-2018-0377 was published May 13, 2022
A vulnerability in the Policy Builder interface of Cisco Policy Suite before 18.2.0 could allow... Critical Unreviewed
CVE-2018-0376 was published May 13, 2022
A vulnerability in the Policy Builder database of Cisco Policy Suite before 18.2.0 could allow an... Critical Unreviewed
CVE-2018-0374 was published May 13, 2022
A vulnerability in the Redis implementation used by the Cisco Policy Suite for Mobile and Cisco... Critical Unreviewed
CVE-2018-0181 was published May 13, 2022
An Improper Authorization issue was discovered in Sierra Wireless AirLink Raven XE, all versions... Critical Unreviewed
CVE-2017-6044 was published May 13, 2022
WiMAX routers based on the MediaTek SDK (libmtk) that use a custom httpd plugin are vulnerable to... Critical Unreviewed
CVE-2017-3216 was published May 13, 2022
ACTi cameras including the D, B, I, and E series using firmware version A1D-500-V6.11.31-AC fail... Critical Unreviewed
CVE-2017-3184 was published May 13, 2022
A Missing Authentication for Critical Function issue was discovered in Schneider Electric... Critical Unreviewed
CVE-2017-13997 was published May 13, 2022
A Missing Authentication for Critical Function issue was discovered in OPW Fuel Management... Critical Unreviewed
CVE-2017-12733 was published May 13, 2022
Remote enabling and disabling admin interface in Gemalto's HASP SRM, Sentinel HASP and Sentinel... Critical Unreviewed
CVE-2017-12822 was published May 13, 2022
register_send.php on D-Link DIR-850L REV. B (with firmware through FW208WWb02) devices does not... Critical Unreviewed
CVE-2017-14417 was published May 13, 2022
Trustwave Secure Web Gateway (SWG) through 11.8.0.27 allows remote attackers to append an... Critical Unreviewed
CVE-2017-18001 was published May 13, 2022
VMware vCenter Server 5.5, 6.0, 6.5 allows vSphere users with certain, limited vSphere privileges... Critical Unreviewed
CVE-2017-4919 was published May 13, 2022
An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and... Critical Unreviewed
CVE-2017-6409 was published May 13, 2022
An issue was discovered on Humax Digital HG100R 2.0.6 devices. To download the backup file it's... Critical Unreviewed
CVE-2017-7315 was published May 13, 2022
An issue was discovered in Zoho ManageEngine Desktop Central 10.0.124 and 10.0.184: insufficient... Critical Unreviewed
CVE-2018-5339 was published May 13, 2022
Missing Authentication for Critical Function in Apache Cassandra Critical
CVE-2018-8016 was published for org.apache.cassandra:cassandra-all (Maven) May 13, 2022
MarkLee131
HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allow remote attackers... Critical Unreviewed
CVE-2016-2004 was published May 14, 2022
An issue was discovered in Zoho ManageEngine Desktop Central 10.0.124 and 10.0.184: missing... Critical Unreviewed
CVE-2018-5338 was published May 14, 2022
The JMX/RMI interface in Nasdaq BWise 5.0 does not require authentication for an SAP BO Component... Critical Unreviewed
CVE-2018-11247 was published May 14, 2022
In Schneider Electric Evlink Charging Station versions prior to v3.2.0-12_v1, the Web Interface... Critical Unreviewed
CVE-2018-7778 was published May 14, 2022
Contec Smart Home 4.15 devices do not require authentication for new_user.php, edit_user.php,... Critical Unreviewed
CVE-2018-9162 was published May 14, 2022
SAP NetWeaver System Landscape Directory, LM-CORE 7.10, 7.20, 7.30, 7.31, 7.40, does not perform... Critical Unreviewed
CVE-2018-2368 was published May 14, 2022
eQ-3 AG HomeMatic CCU2 2.29.22 devices have an open XML-RPC port without authentication. This can... Critical Unreviewed
CVE-2018-7301 was published May 14, 2022
A potential security vulnerability has been identified in HPE Application Performance Management ... Critical Unreviewed
CVE-2017-14350 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database