GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,847
Composer 4,870
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,932
npm 4,128
NuGet 735
pip 3,944
Pub 12
RubyGems 945
Rust 1,024
Swift 39

Unreviewed advisories

All unreviewed 269,457

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,247 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Docker Docs Docker image through 2020-12-14 contains a blank password for the root user.... Critical Unreviewed

CVE-2020-35467 was published May 24, 2022

The Software AG Terracotta Server OSS Docker image 5.4.1 contains a blank password for the root... Critical Unreviewed

CVE-2020-35469 was published May 24, 2022

Version 1.0.0 of the Instana Dynamic APM Docker image contains a blank password for the root user... Critical Unreviewed

CVE-2020-35463 was published May 24, 2022

The Appbase streams Docker image 2.1.2 contains a blank password for the root user. Systems... Critical Unreviewed

CVE-2020-35468 was published May 24, 2022

The official adminer docker images before 4.7.0-fastcgi contain a blank password for a root user.... Critical Unreviewed

CVE-2020-35186 was published May 24, 2022

The official ghost docker images before 2.16.1-alpine (Alpine specific) contain a blank password... Critical Unreviewed

CVE-2020-35185 was published May 24, 2022

The official composer docker images before 1.8.3 contain a blank password for a root user. System... Critical Unreviewed

CVE-2020-35184 was published May 24, 2022

The official kong docker images before 1.0.2-alpine (Alpine specific) contain a blank password... Critical Unreviewed

CVE-2020-35189 was published May 24, 2022

The official influxdb docker images before 1.7.3-meta-alpine (Alpine specific) contain a blank... Critical Unreviewed

CVE-2020-35194 was published May 24, 2022

The official plone Docker images before version of 4.3.18-alpine (Alpine specific) contain a... Critical Unreviewed

CVE-2020-35190 was published May 24, 2022

The official telegraf docker images before 1.9.4-alpine (Alpine specific) contain a blank... Critical Unreviewed

CVE-2020-35187 was published May 24, 2022

The official drupal docker images before 8.5.10-fpm-alpine (Alpine specific) contain a blank... Critical Unreviewed

CVE-2020-35191 was published May 24, 2022

The official chronograf docker images before 1.7.7-alpine (Alpine specific) contain a blank... Critical Unreviewed

CVE-2020-35188 was published May 24, 2022

The official rabbitmq docker images before 3.7.13-beta.1-management-alpine (Alpine specific)... Critical Unreviewed

CVE-2020-35196 was published May 24, 2022

The official haproxy docker images before 1.8.18-alpine (Alpine specific) contain a blank... Critical Unreviewed

CVE-2020-35195 was published May 24, 2022

The official vault docker images before 0.11.6 contain a blank password for a root user. System... Critical Unreviewed

CVE-2020-35192 was published May 24, 2022

The official memcached docker images before 1.5.11-alpine (Alpine specific) contain a blank... Critical Unreviewed

CVE-2020-35197 was published May 24, 2022

An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55.... High Unreviewed

CVE-2020-24580 was published May 24, 2022

An issue was discovered in URVE Build 24.03.2020. Using the _internal/pc/shutdown.php path, it is... Critical Unreviewed

CVE-2020-29551 was published May 24, 2022

The SolarWinds Orion API is vulnerable to an authentication bypass that could allow a remote... Critical Unreviewed

CVE-2020-10148 was published May 24, 2022

The default configuration of Crimson 3.1 (Build versions prior to 3119.001) allows a user to be... Critical Unreviewed

CVE-2020-27285 was published May 24, 2022

A vulnerability has been identified in SCALANCE X-200 switch family (incl. SIPLUS NET variants) ... High Unreviewed

CVE-2020-15799 was published May 24, 2022

Multiple vulnerabilities in the web-based management interface of Cisco Finesse could allow an... Moderate Unreviewed

CVE-2021-1246 was published May 24, 2022

SOOIL Developments CoLtd DiabecareRS, AnyDana-i, AnyDana-A, The communication protocol of the... Moderate Unreviewed

CVE-2020-27272 was published May 24, 2022

HGiga EIP product lacks ineffective access control in certain pages that allow attackers to... Critical Unreviewed

CVE-2021-22850 was published May 24, 2022

Previous 1…16…50 Next

Previous 1 2 … 14 15 16 17 18 … 49 50 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,247 advisories