Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,850
Erlang
36
GitHub Actions
34
Go
2,480
Maven
5,000+
npm
4,097
NuGet
734
pip
3,910
Pub
12
RubyGems
945
Rust
1,014
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

163 advisories

Loading
Brocade SANnav OVA before SANnav 2.3.1b enables SHA1 deprecated setting for SSH for port 22. High Unreviewed
CVE-2024-4282 was published Feb 15, 2025
jsrsasign v11.1.0 was discovered to contain weak encryption. High Unreviewed
CVE-2025-45764 was published Aug 6, 2025
poco v1.14.1-release was discovered to contain weak encryption. High Unreviewed
CVE-2025-45766 was published Aug 6, 2025
CyberGhostVPNSetup.exe (Windows installer) is signed using the weak cryptographic hash algorithm... High Unreviewed
CVE-2025-51726 was published Aug 4, 2025
jose v6.0.10 was discovered to contain weak encryption. High Unreviewed
CVE-2025-45767 was published Aug 1, 2025
HCL DRYiCE MyXalytics is impacted by the use of an insecure key rotation mechanism which can... High Unreviewed
CVE-2023-50351 was published Jan 3, 2024
HCL DRYiCE MyXalytics is impacted by the use of a broken cryptographic algorithm for encryption,... High Unreviewed
CVE-2023-50350 was published Jan 3, 2024
A vulnerability has been identified in SIRIUS 3RK3 Modular Safety System (MSS) (All versions),... High Unreviewed
CVE-2025-24007 was published May 13, 2025
The File Away plugin for WordPress is vulnerable to unauthorized access of data due to a missing... High Unreviewed
CVE-2025-2539 was published Mar 20, 2025
MD5 Checksum Bypass vulnerabilities where found exploiting a weakness in the way an application... High Unreviewed
CVE-2024-48847 was published Dec 5, 2024
Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5... High Unreviewed
CVE-2023-28509 was published Mar 29, 2023
An issue in Smartcom Bulgaria AD Smartcom Ralink CPE/WiFi router SAM-4G1G-TT-W-VC, SAM-4F1F-TT-W... High Unreviewed
CVE-2025-22936 was published Feb 6, 2025
An issue was discovered in AudioCodes Mediant Session Border Controller (SBC) before 7.40A.501... High Unreviewed
CVE-2024-52884 was published Feb 7, 2025
Brocade SANnav before Brocade SANnav 2.2.2 supports key exchange algorithms, which are considered... High Unreviewed
CVE-2022-43934 was published Feb 4, 2025
A “Use of a Broken or Risky Cryptographic Algorithm” vulnerability in the SSL/TLS component used... High Unreviewed
CVE-2024-8603 was published Jan 15, 2025
Smadar SPS – CWE-327: Use of a Broken or Risky Cryptographic Algorithm High Unreviewed
CVE-2024-47921 was published Dec 30, 2024
This vulnerability exists in the Wave 2.0 due to weak encryption of sensitive data received at... High Unreviewed
CVE-2024-51556 was published Nov 4, 2024
The authentication cookies are generated using an algorithm based on the username, hardcoded... High Unreviewed
CVE-2023-49259 was published Jan 12, 2024
Certain switch models from PLANET Technology only support obsolete algorithms for authentication... High Unreviewed
CVE-2024-8452 was published Sep 30, 2024
A Cryptographic Issue vulnerability has been found on IBERMATICA RPS, affecting version 2019. By... High Unreviewed
CVE-2023-3350 was published Oct 3, 2023
Exposure of Private Personal Information to an Unauthorized Actor in GitHub repository gnuboard... High Unreviewed
CVE-2022-1252 was published Apr 12, 2022
Dell PowerScale InsightIQ, versions 5.0 through 5.1, contains a Use of a Broken or Risky... High Unreviewed
CVE-2024-39583 was published Sep 10, 2024
Web application manifests were stored by using an insecure MD5 hash which allowed for a hash... High Unreviewed
CVE-2024-4765 was published May 14, 2024
Windows Cryptographic Services Security Feature Bypass Vulnerability High Unreviewed
CVE-2024-30098 was published Jul 9, 2024
TVS Motor Company Limited TVS Connect Android v4.6.0 and IOS v5.0.0 was discovered to insecurely... High Unreviewed
CVE-2024-35537 was published Jun 21, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database