Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

165 advisories

Loading
Martem TELEM GW6/GWM versions prior to 2.0.87-4018403-k4 may allow unprivileged users to modify... High Unreviewed
CVE-2018-10605 was published May 13, 2022
IBM Maximo Asset Management 7.6 through 7.6.3 installs with a default administrator account that... High Unreviewed
CVE-2018-1524 was published May 13, 2022
EMC Elastic Cloud Storage (ECS) before 3.1 is affected by an undocumented account vulnerability... Critical Unreviewed
CVE-2017-8021 was published May 13, 2022
Premisys Identicard version 3.1.190 database uses default credentials. Users are unable to change... Critical Unreviewed
CVE-2019-3909 was published May 13, 2022
In refresh of DevelopmentTiles.java, there is the possibility of leaving development settings... High Unreviewed
CVE-2019-1994 was published May 13, 2022
eVisitorPass contains default administrative credentials. An attacker could exploit this... High Unreviewed
CVE-2018-17497 was published May 13, 2022
The BluStar component in Mitel InAttend before 2.5 SP3 and CMG before 8.4 SP3 Suite Servers has a... Critical Unreviewed
CVE-2018-19275 was published May 13, 2022
Lobby Track Desktop contains default administrative credentials. An attacker could exploit this... High Unreviewed
CVE-2018-17485 was published May 13, 2022
Arbitrary Code Execution in grunt High
CVE-2020-7729 was published for grunt (npm) May 6, 2021
A vulnerability in Cisco Meeting Server (CMS) could allow an unauthenticated, adjacent attacker... High Unreviewed
CVE-2018-0263 was published May 13, 2022
Cloud Foundry Stratos, versions prior to 2.3.0, deploys with a public default session store... High Unreviewed
CVE-2019-3783 was published May 13, 2022
A vulnerability in Cisco Aironet 1830 Series and Cisco Aironet 1850 Series Access Points running... Critical Unreviewed
CVE-2017-3834 was published May 13, 2022
Arris Touchstone Telephony Gateway TG1682G 9.1.103J6 devices are distributed by some ISPs with a... Moderate Unreviewed
CVE-2018-10989 was published May 13, 2022
In applyKeyguardFlags of NotificationShadeWindowControllerImpl.java, there is a possible way to... Moderate Unreviewed
CVE-2022-20466 was published Dec 13, 2022
A flaw was found in servicemesh-operator. The NetworkPolicy resources installed for Maistra do... Critical Unreviewed
CVE-2021-3586 was published Aug 23, 2022
Multiple vulnerabilities in the web-based management interface of the Cisco Catalyst Passive... Critical Unreviewed
CVE-2021-34795 was published May 24, 2022
Dell EMC Integrated System for Microsoft Azure Stack Hub, versions 1906 – 2011, contain an... Critical Unreviewed
CVE-2021-21505 was published May 24, 2022
The Orca HCM digital learning platform uses a weak factory default administrator password, which... Critical Unreviewed
CVE-2021-35965 was published May 24, 2022
nLight ECLYPSE (nECY) system Controllers running software prior to 1.17.21245.754 contain a... High Unreviewed
CVE-2021-40825 was published May 24, 2022
Insecure default variable initialization for the Intel BSSA DFT feature may allow a privileged... Moderate Unreviewed
CVE-2021-0114 was published May 24, 2022
Insecure default variable initialization for the Intel BSSA DFT feature may allow a privileged... Moderate Unreviewed
CVE-2021-0144 was published May 24, 2022
In permission declarations of DeviceAdminReceiver.java, there is a possible lack of broadcast... High Unreviewed
CVE-2021-0534 was published May 24, 2022
Insecure default initialization of resource in Intel(R) Boot Guard in Intel(R) CSME versions... Moderate Unreviewed
CVE-2020-8705 was published May 24, 2022
Insecure default variable initialization in some Intel(R) Thunderbolt(TM) DCH drivers for Windows... Moderate Unreviewed
CVE-2020-12327 was published May 24, 2022
Dell PowerScale OneFS, versions 9.0.0, up to and including 9.1.0.19, 9.2.1.12, 9.3.0.6, and 9.4.0... Moderate Unreviewed
CVE-2022-32480 was published Aug 23, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database