GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,438
Composer 4,411
Erlang 33
GitHub Actions 22
Go 2,146
Maven 5,316
npm 3,808
NuGet 687
pip 3,481
Pub 12
RubyGems 897
Rust 899
Swift 38

Unreviewed advisories

All unreviewed 246,197

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

479 advisories

Filter by severity

Sort by

Least recently updated

kpac/script.cpp in KDE kio before 5.32 and kdelibs before 4.14.30 calls the PAC FindProxyForURL... Moderate Unreviewed

CVE-2017-6410 was published May 13, 2022

Dahua DHI-HCVR7216A-S3 devices with NVR Firmware 3.210.0001.10 2016-06-06, Camera Firmware 2.400... Moderate Unreviewed

CVE-2017-6341 was published May 13, 2022

During a routine security analysis, it was found that one of the ports in Apache Impala ... High Unreviewed

CVE-2017-5652 was published May 13, 2022

An API Privilege vulnerability in Cisco TelePresence Server Software could allow an... Moderate Unreviewed

CVE-2017-3815 was published May 13, 2022

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: C API).... Moderate Unreviewed

CVE-2017-3305 was published May 13, 2022

An issue was discovered in certain Apple products. iOS before 10.3 is affected. The issue... Moderate Unreviewed

CVE-2017-2412 was published May 13, 2022

An issue was discovered in Enigmail before 1.9.9. A remote attacker can obtain cleartext content... Moderate Unreviewed

CVE-2017-17844 was published May 13, 2022

IBM Integration Bus 9.0 and 10.0 transmits user credentials in plain in clear text which can be... High Unreviewed

CVE-2017-1694 was published May 13, 2022

In the "NQ Contacts Backup & Restore" application 1.1 for Android, no HTTPS is used for... Critical Unreviewed

CVE-2017-15999 was published May 13, 2022

Mirasys Video Management System (VMS) 6.x before 6.4.6, 7.x before 7.5.15, and 8.x before 8.1.1... High Unreviewed

CVE-2017-15290 was published May 13, 2022

An unintended cleartext issue exists in Go before 1.8.4 and 1.9.x before 1.9.1. RFC 4954 requires... Moderate Unreviewed

CVE-2017-15042 was published May 13, 2022

The Vibease Wireless Remote Vibrator app for Android and the Vibease Chat app for iOS use... High Unreviewed

CVE-2017-14486 was published May 13, 2022

IBM Tivoli Endpoint Manager (IBM BigFix Platform 9.2 and 9.5) transmits sensitive or security... Moderate Unreviewed

CVE-2017-1232 was published May 13, 2022

IBM Tivoli Monitoring Portal V6 client could allow a local attacker to gain elevated privileges... High Unreviewed

CVE-2017-1181 was published May 13, 2022

Shotwell version 0.24.4 or earlier and 0.25.3 or earlier is vulnerable to an information... High Unreviewed

CVE-2017-1000024 was published May 13, 2022

Gitlab Enterprise Edition version 10.1.0 is vulnerable to an insufficiently protected credential... High Unreviewed

CVE-2017-0925 was published May 13, 2022

A vulnerability in the auto discovery phase of Cisco Spark Hybrid Calendar Service could allow an... High Unreviewed

CVE-2017-12310 was published May 13, 2022

Abbott Laboratories Accent and Anthem pacemakers manufactured prior to Aug 28, 2017 transmit... Moderate Unreviewed

CVE-2017-12716 was published May 13, 2022

An Information Exposure issue was discovered in ProMinent MultiFLEX M10a Controller web interface... Moderate Unreviewed

CVE-2017-14009 was published May 13, 2022

In versions 4.3.2-R4 and prior of Cambium Networks cnPilot firmware, an undocumented, root... High Unreviewed

CVE-2017-5259 was published May 13, 2022

A vulnerability in the detection engine of Cisco Firepower System Software could allow an... Moderate Unreviewed

CVE-2018-0281 was published May 13, 2022

A vulnerability in the detection engine of Cisco Firepower System Software could allow an... Moderate Unreviewed

CVE-2018-0283 was published May 13, 2022

Medtronic MMT 508 MiniMed insulin pump, 522 / MMT - 722 Paradigm REAL-TIME, 523 / MMT - 723... Moderate Unreviewed

CVE-2018-10634 was published May 13, 2022

IBM BigFix Platform 9.2 and 9.5 transmits sensitive or security-critical data in clear text in a... High Unreviewed

CVE-2018-1600 was published May 13, 2022

The Auto-Maskin DCU 210E, RP-210E, and Marine Pro Observer Android App transmit sensitive or... Moderate Unreviewed

CVE-2018-5401 was published May 13, 2022

Previous 1 2 … 15 16 17 18 19 20 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

479 advisories