Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,706
Erlang
34
GitHub Actions
28
Go
2,292
Maven
5,000+
npm
3,942
NuGet
708
pip
3,711
Pub
12
RubyGems
919
Rust
959
Swift
38
Unreviewed advisories
All unreviewed
5,000+

153 advisories

Loading
In CODESYS V2 PLCWinNT and Runtime Toolkit 32 in versions prior to V2.4.7.57 password protection... Critical Unreviewed
CVE-2022-31806 was published Jun 25, 2022
The Orca HCM digital learning platform uses a weak factory default administrator password, which... Critical Unreviewed
CVE-2021-35965 was published May 24, 2022
Dell EMC Integrated System for Microsoft Azure Stack Hub, versions 1906 – 2011, contain an... Critical Unreviewed
CVE-2021-21505 was published May 24, 2022
Multiple vulnerabilities in the web-based management interface of the Cisco Catalyst Passive... Critical Unreviewed
CVE-2021-34795 was published May 24, 2022
nLight ECLYPSE (nECY) system Controllers running software prior to 1.17.21245.754 contain a... High Unreviewed
CVE-2021-40825 was published May 24, 2022
Insecure default variable initialization for the Intel BSSA DFT feature may allow a privileged... Moderate Unreviewed
CVE-2021-0114 was published May 24, 2022
Insecure default variable initialization for the Intel BSSA DFT feature may allow a privileged... Moderate Unreviewed
CVE-2021-0144 was published May 24, 2022
In permission declarations of DeviceAdminReceiver.java, there is a possible lack of broadcast... High Unreviewed
CVE-2021-0534 was published May 24, 2022
An issue was discovered in Svakom Siime Eye 14.1.00000001.3.330.0.0.3.14. By sending a set_params... Moderate Unreviewed
CVE-2020-11915 was published May 24, 2022
An issue was discovered on TK-Star Q90 Junior GPS horloge 3.1042.9.8656 devices. It performs... High Unreviewed
CVE-2019-20470 was published May 24, 2022
Insecure default initialization of resource in Intel(R) Boot Guard in Intel(R) CSME versions... Moderate Unreviewed
CVE-2020-8705 was published May 24, 2022
Insecure default variable initialization in some Intel(R) Thunderbolt(TM) DCH drivers for Windows... Moderate Unreviewed
CVE-2020-12327 was published May 24, 2022
A spoofing vulnerability manifests in Microsoft Xamarin.Forms due to the default settings on... High Unreviewed
CVE-2020-16873 was published May 24, 2022
Lansweeper 6.0.x through 7.2.x has a default installation in which the admin password is... High Unreviewed
CVE-2020-14011 was published May 24, 2022
A vulnerability in the firmware of the Cisco UCS C-Series Rack Servers could allow an... High Unreviewed
CVE-2019-1950 was published May 24, 2022
A flaw was found in Ansible Tower, versions 3.6.x before 3.6.2 and 3.5.x before 3.5.3, where... High Unreviewed
CVE-2019-19340 was published May 24, 2022
The Last.fm desktop app (Last.fm Scrobbler) through 2.1.39 on macOS makes HTTP requests that... Moderate Unreviewed
CVE-2019-19251 was published May 24, 2022
In processPhonebookAccess of CachedBluetoothDevice.java, there is a possible permission bypass... Low Unreviewed
CVE-2019-2197 was published May 24, 2022
IBM Open Power Firmware OP910 and OP920 could allow access to BMC via IPMI using default OpenBMC... Critical Unreviewed
CVE-2019-4169 was published May 24, 2022
NetApp AFF A700s Baseboard Management Controller (BMC) firmware versions 1.22 and higher were... Critical Unreviewed
CVE-2019-5497 was published May 24, 2022
A vulnerability in the SSH key management for the Cisco Nexus 9000 Series Application Centric... Critical Unreviewed
CVE-2019-1804 was published May 24, 2022
doorGets 7.0 has a default administrator credential vulnerability. A remote attacker can use this... Critical Unreviewed
CVE-2019-11618 was published May 24, 2022
A vulnerability in SonicWall Global Management System (GMS), allow a remote user to gain access... High Unreviewed
CVE-2019-7476 was published May 24, 2022
An issue was discovered on Cerner Connectivity Engine (CCE) 4 devices. The user running the main... High Unreviewed
CVE-2018-20052 was published May 24, 2022
In the configuration of NFC modules on certain devices, there is a possible failure to... High Unreviewed
CVE-2019-2041 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database