Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+

320 advisories

Loading
IBM i2 Enterprise Insight Analysis 2.1.7 could allow a remote attacker to obtain sensitive... Moderate Unreviewed
CVE-2018-1525 was published May 13, 2022
Source code is downloaded over cleartext HTTP in portaudio Moderate
CVE-2016-10933 was published for portaudio (Rust) Aug 25, 2021
IBM Sterling B2B Integrator 5.2.0.1 through 6.0.0.0 Standard Edition could allow highly sensitive... Moderate Unreviewed
CVE-2019-4063 was published May 13, 2022
The mincore() implementation in mm/mincore.c in the Linux kernel through 4.19.13 allowed local... Moderate Unreviewed
CVE-2019-5489 was published May 13, 2022
translate/translate_manager.cc in Google Chrome before 17.0.963.56 and 19.x before 19.0.1036.7... Moderate Unreviewed
CVE-2011-3022 was published May 13, 2022
The Auto-Maskin DCU 210E, RP-210E, and Marine Pro Observer Android App transmit sensitive or... Moderate Unreviewed
CVE-2018-5401 was published May 13, 2022
A Cleartext Transmission of Sensitive Information issue was discovered in Belden Hirschmann RS,... Moderate Unreviewed
CVE-2018-5471 was published May 13, 2022
A vulnerability in the detection engine of Cisco Firepower System Software could allow an... Moderate Unreviewed
CVE-2018-0283 was published May 13, 2022
A vulnerability in the detection engine of Cisco Firepower System Software could allow an... Moderate Unreviewed
CVE-2018-0281 was published May 13, 2022
Abbott Laboratories Accent and Anthem pacemakers manufactured prior to Aug 28, 2017 transmit... Moderate Unreviewed
CVE-2017-12716 was published May 13, 2022
IBM Tivoli Endpoint Manager (IBM BigFix Platform 9.2 and 9.5) transmits sensitive or security... Moderate Unreviewed
CVE-2017-1232 was published May 13, 2022
An unintended cleartext issue exists in Go before 1.8.4 and 1.9.x before 1.9.1. RFC 4954 requires... Moderate Unreviewed
CVE-2017-15042 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 10.3 is affected. The issue... Moderate Unreviewed
CVE-2017-2412 was published May 13, 2022
An API Privilege vulnerability in Cisco TelePresence Server Software could allow an... Moderate Unreviewed
CVE-2017-3815 was published May 13, 2022
The Themes App Honor 8 Lite Huawei mobile phones with software of versions before Prague... Moderate Unreviewed
CVE-2017-8154 was published May 13, 2022
Dahua DHI-HCVR7216A-S3 devices with NVR Firmware 3.210.0001.10 2016-06-06, Camera Firmware 2.400... Moderate Unreviewed
CVE-2017-6341 was published May 13, 2022
A vulnerability in the Autonomic Networking feature of Cisco IOS Software and Cisco IOS XE... Moderate Unreviewed
CVE-2017-6665 was published May 13, 2022
kpac/script.cpp in KDE kio before 5.32 and kdelibs before 4.14.30 calls the PAC FindProxyForURL... Moderate Unreviewed
CVE-2017-6410 was published May 13, 2022
An issue was discovered in certain Apple products. The Apple Support app before 1.2 for iOS is... Moderate Unreviewed
CVE-2017-7147 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13... Moderate Unreviewed
CVE-2017-7078 was published May 13, 2022
An issue was discovered on OnePlus One and X devices. Due to a lenient updater-script on the... Moderate Unreviewed
CVE-2017-8851 was published May 13, 2022
An issue was discovered on OnePlus One, X, 2, 3, and 3T devices. Due to a lenient updater-script... Moderate Unreviewed
CVE-2017-8850 was published May 13, 2022
SimpliSafe Original has Unencrypted Keypad Transmissions, which allows physically proximate... Moderate Unreviewed
CVE-2018-11402 was published May 13, 2022
An issue was discovered on Vgate iCar 2 Wi-Fi OBD2 Dongle devices. The data packets that are sent... Moderate Unreviewed
CVE-2018-11477 was published May 13, 2022
SimpliSafe Original has Unencrypted Sensor Transmissions, which allows physically proximate... Moderate Unreviewed
CVE-2018-11399 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database