GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,904
Composer 4,871
Erlang 37
GitHub Actions 36
Go 2,504
Maven 5,949
npm 4,149
NuGet 735
pip 3,949
Pub 12
RubyGems 945
Rust 1,025
Swift 39

Unreviewed advisories

All unreviewed 269,820

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,099 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A man-in-the-middle vulnerability related to vCenter access was found in Cohesity DataPlatform... High Unreviewed

CVE-2019-11242 was published May 24, 2022

An authentication bypass vulnerability exists in Windows Communication Foundation (WCF) and... High Unreviewed

CVE-2019-1006 was published May 24, 2022

A vulnerability in the Web Services Management Agent (WSMA) feature of Cisco Industrial Network... Moderate Unreviewed

CVE-2019-1940 was published May 24, 2022

A vulnerability exists where it possible to force Network Security Services (NSS) to sign... Moderate Unreviewed

CVE-2019-11727 was published May 24, 2022

It was discovered evolution-ews before 3.31.3 does not check the validity of SSL certificates. An... High Unreviewed

CVE-2019-3890 was published May 24, 2022

In cPanel before 62.0.4, WHM SSL certificate generation uses an unreserved e-mail address (SEC-209). Moderate Unreviewed

CVE-2017-18479 was published May 24, 2022

The mAadhaar application 1.2.7 for Android lacks SSL Certificate Validation, leading to man-in... High Unreviewed

CVE-2019-14516 was published May 24, 2022

The SIP TLS module of Huawei CloudLink Phone 7900 with V600R019C10 has a TLS certificate... Moderate Unreviewed

CVE-2019-5280 was published May 24, 2022

A vulnerability in Cisco Webex Meetings Mobile (iOS) could allow an unauthenticated, remote... Moderate Unreviewed

CVE-2019-1948 was published May 24, 2022

There is Missing SSL Certificate Validation in the pw3270 terminal emulator before version 5.1. High Unreviewed

CVE-2019-15525 was published May 24, 2022

Dell EMC Enterprise Copy Data Management (eCDM) versions 1.0, 1.1, 2.0, 2.1, and 3.0 contain a... High Unreviewed

CVE-2019-3751 was published May 24, 2022

Limesurvey before 3.17.14 does not enforce SSL/TLS usage in the default configuration. Moderate Unreviewed

CVE-2019-16179 was published May 24, 2022

An issue was discovered in Couchbase Server 5.0.0. When creating a new remote cluster reference... High Unreviewed

CVE-2019-11497 was published May 24, 2022

An issue was discovered in JetBrains TeamCity 2018.2.4. It had no SSL certificate validation for... High Unreviewed

CVE-2019-15042 was published May 24, 2022

The Twitter Kit framework through 3.4.2 for iOS does not properly validate the api.twitter.com... High Unreviewed

CVE-2019-16263 was published May 24, 2022

An Improper Certificate Validation weakness in the SRX Series Application Identification (app-id)... High Unreviewed

CVE-2019-0054 was published May 24, 2022

Clustered Data ONTAP versions 9.0 and higher do not enforce hostname verification under certain... Moderate Unreviewed

CVE-2019-5506 was published May 24, 2022

It was discovered that Dovecot before versions 2.2.36.1 and 2.3.4.1 incorrectly handled client... Moderate Unreviewed

CVE-2019-3814 was published May 24, 2022

Man-in-the-middle vulnerability in Micro Focus Self Service Password Reset, affecting all... Moderate Unreviewed

CVE-2019-11674 was published May 24, 2022

The TLS stack in Mono before 3.12.1 allows remote attackers to have unspecified impact via... Critical Unreviewed

CVE-2015-2320 was published May 24, 2022

European Commission eIDAS-Node Integration Package before 2.3.1 allows Certificate Faking because... Critical Unreviewed

CVE-2019-18632 was published May 24, 2022

European Commission eIDAS-Node Integration Package before 2.3.1 has Missing Certificate... Critical Unreviewed

CVE-2019-18633 was published May 24, 2022

A vulnerability, in The ReportsTrustManager class of Brocade SANnav versions before v2.0, could... High Unreviewed

CVE-2019-16209 was published May 24, 2022

The Audible application through 2.34.0 for Android has Missing SSL Certificate Validation,... Moderate Unreviewed

CVE-2019-11554 was published May 24, 2022

The NTV News24 prior to Ver.3.0.0 does not verify X.509 certificates from SSL servers, which... High Unreviewed

CVE-2019-6032 was published May 24, 2022

Previous 1…26…44 Next

Previous 1 2 … 24 25 26 27 28 … 43 44 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,099 advisories