Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

462 advisories

Loading
DES cipher, which has inadequate encryption strength, is used Hitachi Energy FOXMAN-UN to encrypt... Moderate Unreviewed
CVE-2021-40341 was published Jan 6, 2023
Inadequate encryption may allow the credentials used by Emerson OpenEnterprise, up through... Moderate Unreviewed
CVE-2020-16235 was published May 20, 2022
IBM Security Guardium Big Data Intelligence (SonarG) 4.0 uses weaker than expected cryptographic... Moderate Unreviewed
CVE-2019-4339 was published May 24, 2022
The Linux kernel 4.x (starting from 4.1) and 5.x before 5.0.8 allows Information Exposure ... High Unreviewed
CVE-2019-10639 was published May 24, 2022
In JetBrains IntelliJ IDEA before 2022.3 the built-in web server leaked information about open... Low Unreviewed
CVE-2022-46825 was published Dec 8, 2022
An issue was discovered on D-Link 6600-AP and DWL-3600AP Ax 4.2.0.14 21/03/2019 devices. There is... High Unreviewed
CVE-2019-14332 was published May 24, 2022
In the Linux kernel before 5.1.7, a device can be tracked by an attacker using the IP ID values... Moderate Unreviewed
CVE-2019-10638 was published May 24, 2022
In Bitcoin Core 0.18.0, bitcoin-qt stores wallet.dat data unencrypted in memory. Upon a crash, it... Moderate Unreviewed
CVE-2019-15947 was published May 24, 2022
In Enigmail below 2.1, an attacker in possession of PGP encrypted emails can wrap them as sub... Moderate Unreviewed
CVE-2019-14664 was published May 24, 2022
The Infinite Design application 3.4.12 for Android sends a username and password via TCP without... Moderate Unreviewed
CVE-2019-17356 was published May 24, 2022
Adobe Acrobat and Reader versions 2019.012.20034 and earlier; 2019.012.20035 and earlier versions... High Unreviewed
CVE-2019-8237 was published May 24, 2022
A security feature bypass vulnerability exists in Microsoft Windows when a man-in-the-middle... Moderate Unreviewed
CVE-2019-1338 was published May 24, 2022
A flaw was found in dnsmasq before version 2.83. When getting a reply from a forwarded query,... Moderate Unreviewed
CVE-2020-25685 was published May 24, 2022
A flaw was found in the way certificate signatures could be forged using collisions found in the... Moderate Unreviewed
CVE-2019-14855 was published May 24, 2022
An issue was discovered in Intesync Solismed 3.3sp1. An flaw in the encryption implementation... Moderate Unreviewed
CVE-2019-17428 was published May 24, 2022
The Bitwarden server through 1.32.0 has a potentially unwanted KDF. Moderate Unreviewed
CVE-2019-19766 was published May 24, 2022
An issue existed in the handling of links in encrypted PDFs. This issue was addressed by adding a... Moderate Unreviewed
CVE-2019-8772 was published May 24, 2022
In affected versions of Octopus Server it was identified that the same encryption process was... Moderate Unreviewed
CVE-2022-2781 was published Oct 6, 2022
An encryption key vulnerability on Mitel SIP-DECT wireless devices 8.0 and 8.1 could allow an... Moderate Unreviewed
CVE-2019-19891 was published May 24, 2022
An issue was discovered in UNCTAD ASYCUDA World 2001 through 2020. The Java RMI Server has an... High Unreviewed
CVE-2020-9761 was published May 24, 2022
A vulnerability has been identified in SiNVR 3 Central Control Server (CCS) (all versions), SiNVR... Moderate Unreviewed
CVE-2019-19299 was published May 24, 2022
On BIG-IP 15.0.0-15.1.0.2, 14.1.0-14.1.2.3, 13.1.0-13.1.3.2, 12.1.0-12.1.5.1, and 11.5.2-11.6.5.1... Moderate Unreviewed
CVE-2020-5860 was published May 24, 2022
A logic issue was addressed with improved state management. This issue is fixed in iOS 13.4 and... Moderate Unreviewed
CVE-2020-9770 was published May 24, 2022
A weak encryption vulnerability in Mitel MiVoice Connect Client before 214.100.1214.0 could allow... Moderate Unreviewed
CVE-2020-10377 was published May 24, 2022
An issue was discovered on LG mobile devices with Android OS 9.0 (Qualcomm SDM450, SDM845, SM6150... Low Unreviewed
CVE-2019-20775 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database