Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,096
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,654
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+

184 advisories

Loading
An issue was discovered on MOBOTIX S14 MX-V4.2.1.61 devices. The default management application... High Unreviewed
CVE-2019-7675 was published May 13, 2022
Philips e-Alert Unit (non-medical device), Version R2.1 and prior. The software transmits... High Unreviewed
CVE-2018-8842 was published May 13, 2022
IBM BigFix Platform 9.2 and 9.5 transmits sensitive or security-critical data in clear text in a... High Unreviewed
CVE-2018-1600 was published May 13, 2022
In versions 4.3.2-R4 and prior of Cambium Networks cnPilot firmware, an undocumented, root... High Unreviewed
CVE-2017-5259 was published May 13, 2022
A vulnerability in the auto discovery phase of Cisco Spark Hybrid Calendar Service could allow an... High Unreviewed
CVE-2017-12310 was published May 13, 2022
Gitlab Enterprise Edition version 10.1.0 is vulnerable to an insufficiently protected credential... High Unreviewed
CVE-2017-0925 was published May 13, 2022
Shotwell version 0.24.4 or earlier and 0.25.3 or earlier is vulnerable to an information... High Unreviewed
CVE-2017-1000024 was published May 13, 2022
IBM Tivoli Monitoring Portal V6 client could allow a local attacker to gain elevated privileges... High Unreviewed
CVE-2017-1181 was published May 13, 2022
The Vibease Wireless Remote Vibrator app for Android and the Vibease Chat app for iOS use... High Unreviewed
CVE-2017-14486 was published May 13, 2022
Mirasys Video Management System (VMS) 6.x before 6.4.6, 7.x before 7.5.15, and 8.x before 8.1.1... High Unreviewed
CVE-2017-15290 was published May 13, 2022
IBM Integration Bus 9.0 and 10.0 transmits user credentials in plain in clear text which can be... High Unreviewed
CVE-2017-1694 was published May 13, 2022
During a routine security analysis, it was found that one of the ports in Apache Impala ... High Unreviewed
CVE-2017-5652 was published May 13, 2022
An issue was discovered on Dahua DHI-HCVR7216A-S3 3.210.0001.10 build 2016-06-06 devices. The... High Unreviewed
CVE-2017-6432 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves... High Unreviewed
CVE-2017-7133 was published May 13, 2022
Dell EMC NetWorker versions between 9.0 and 9.1.1.8 through 9.2.1.3, and the version 18.1.0.1... High Unreviewed
CVE-2018-11050 was published May 13, 2022
Intuit Lacerte 2017 for Windows in a client/server environment transfers the entire customer list... High Unreviewed
CVE-2018-11338 was published May 13, 2022
An issue was discovered on D-Link DIR-601 2.02NA devices. Being local to the network and having... High Unreviewed
CVE-2018-12710 was published May 13, 2022
Druide Antidote through 9.5.1 on Windows and Linux allows remote code execution through the... High Unreviewed
CVE-2018-13140 was published May 13, 2022
An issue was discovered in the MensaMax (aka com.breustedt.mensamax) application 4.3 for Android.... High Unreviewed
CVE-2018-15752 was published May 13, 2022
An issue was discovered in the Daimler Mercedes-Benz Me app 2.11.0-846 for iOS. The encrypted... High Unreviewed
CVE-2018-18071 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS before 10... High Unreviewed
CVE-2018-4227 was published May 13, 2022
In /usr/local/etc/config/addons/mh/loopupd.sh on eQ-3 AG HomeMatic CCU2 2.29.22 devices, software... High Unreviewed
CVE-2018-7298 was published May 13, 2022
There is a SRTP icon display vulnerability in Huawei eSpace product. An unauthenticated, remote... High Unreviewed
CVE-2018-7960 was published May 13, 2022
Setuptools vulnerable to Man-in-the-middle attacks High
CVE-2013-1633 was published for setuptools (pip) May 17, 2022
Cleartext transmission of sensitive information. The following products are affected: Acronis... High Unreviewed
CVE-2022-30994 was published May 19, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database