Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,150
NuGet
736
pip
3,952
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,327 advisories

Loading
A vulnerability in Cisco Prime Collaboration Provisioning (PCP) Software 11.6 could allow an... High Unreviewed
CVE-2018-0141 was published May 13, 2022
The Cisco AMP For Endpoints application allows an authenticated, local attacker to access a... Moderate Unreviewed
CVE-2017-12317 was published May 13, 2022
Juniper Networks Contrail Service Orchestration releases prior to 4.0.0 have Grafana service... Critical Unreviewed
CVE-2018-0039 was published May 13, 2022
The backend database of the Philips DoseWise Portal application versions 1.1.7.333 and 2.1.1.3069... Critical Unreviewed
CVE-2017-9656 was published May 13, 2022
A hard-coded cryptographic key vulnerability was identified in Red Lion Controls Sixnet-Managed... Critical Unreviewed
CVE-2016-9335 was published May 13, 2022
Hard-coded accounts may be used to access Hospira Plum A+ Infusion System version 13.4 and prior,... Critical Unreviewed
CVE-2015-3953 was published May 13, 2022
bilde2910 Hauk v1.6.1 requires a hardcoded password which by default is blank. This hardcoded... High Unreviewed
CVE-2022-37857 was published Sep 9, 2022
The web app client of TP-Link AX10v1 V1_211117 uses hard-coded cryptographic keys when... Moderate Unreviewed
CVE-2022-41540 was published Oct 18, 2022
IBM Publishing Engine 2.1.2 and 6.0.5 contains an undisclosed vulnerability that could allow a... Moderate Unreviewed
CVE-2017-1787 was published May 13, 2022
GE Centricity PACS RA1000, diagnostic image analysis, all current versions are affected these... Critical Unreviewed
CVE-2017-14008 was published May 13, 2022
Uber Technologies, Inc. UberEATS: Uber for Food Delivery, 1.108.10001, 2017-11-02, iOS... High Unreviewed
CVE-2017-13104 was published May 13, 2022
DistinctDev, Inc., The Moron Test, 6.3.1, 2017-05-04, iOS application uses a hard-coded key for... High Unreviewed
CVE-2017-13100 was published May 13, 2022
Gameloft Asphalt Xtreme: Offroad Rally Racing, 1.6.0, 2017-08-13, iOS application uses a hard... High Unreviewed
CVE-2017-13102 was published May 13, 2022
DFNDR Security Antivirus, Anti-hacking & Cleaner, 5.0.9, 2017-11-01, Android application uses a... High Unreviewed
CVE-2017-13108 was published May 13, 2022
Boston Scientific ZOOM LATITUDE PRM Model 3120 uses a hard-coded cryptographic key to encrypt PHI... Moderate Unreviewed
CVE-2017-14014 was published May 13, 2022
GE Infinia/Infinia with Hawkeye 4 medical imaging systems all current versions are affected these... Critical Unreviewed
CVE-2017-14002 was published May 13, 2022
Cheetahmobile CM Launcher 3D - Theme, wallpaper, Secure, Efficient, 5.0.3, 2017-09-19, Android... High Unreviewed
CVE-2017-13106 was published May 13, 2022
Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, uses hard... High Unreviewed
CVE-2016-9495 was published May 13, 2022
Baxter SIGMA Spectrum Infusion System version 6.05 (model 35700BAX) with wireless battery module ... Moderate Unreviewed
CVE-2014-5431 was published May 13, 2022
Baxter SIGMA Spectrum Infusion System version 6.05 (model 35700BAX) with wireless battery module ... Critical Unreviewed
CVE-2014-5434 was published May 13, 2022
Multiple globally default credentials exist across all CMS8000 devices, that once exposed, allow... Moderate Unreviewed
CVE-2022-38069 was published Sep 14, 2022
In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the... High Unreviewed
CVE-2017-11026 was published May 13, 2022
An issue was discovered on Wireless IP Camera 360 devices. A root account with a known SHA-512... Critical Unreviewed
CVE-2017-11632 was published May 13, 2022
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware... High Unreviewed
CVE-2017-14426 was published May 13, 2022
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware... High Unreviewed
CVE-2017-14428 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database