GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,952
Composer 4,274
Erlang 31
GitHub Actions 21
Go 2,056
Maven 5,237
npm 3,740
NuGet 668
pip 3,419
Pub 12
RubyGems 891
Rust 872
Swift 36

Unreviewed advisories

All unreviewed 238,598

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

432 advisories

Filter by severity

Sort by

Least recently updated

IBM Security Identity Governance Virtual Appliance 5.2 through 5.2.3.2 uses weaker than expected... High Unreviewed

CVE-2017-1366 was published May 13, 2022

IBM QRadar SIEM 7.2 and 7.3 uses weaker than expected cryptographic algorithms that could allow... High Unreviewed

CVE-2017-1695 was published May 13, 2022

IBM InfoSphere Streams 4.2.1 uses weaker than expected cryptographic algorithms that could allow... Moderate Unreviewed

CVE-2017-1713 was published May 13, 2022

Inadequate Encryption Strength in Jenkins Moderate

CVE-2017-2598 was published for org.jenkins-ci.main:jenkins-core (Maven) May 13, 2022

Cryptanalysis vulnerability in the web interface in McAfee Network Security Management (NSM)... Moderate Unreviewed

CVE-2017-3971 was published May 13, 2022

The GridServer Broker, GridServer Driver, and GridServer Engine components of TIBCO Software Inc.... Moderate Unreviewed

CVE-2017-5535 was published May 13, 2022

A Weak Cryptography for Passwords issue was discovered in General Electric (GE) Multilin SR 750... Critical Unreviewed

CVE-2017-7905 was published May 13, 2022

An Inadequate Encryption Strength issue was discovered in Mirion Technologies DMC 3000... Moderate Unreviewed

CVE-2017-9645 was published May 13, 2022

Schneider Electric Ampla MES 6.4 provides capability to configure users and their privileges.... Low Unreviewed

CVE-2017-9635 was published May 13, 2022

A vulnerability in the implementation of RSA-encrypted nonces in Cisco IOS Software and Cisco IOS... Moderate Unreviewed

CVE-2018-0131 was published May 13, 2022

Philips HealthSuite Health Android App, all versions. The software uses simple encryption that is... Moderate Unreviewed

CVE-2018-19001 was published May 13, 2022

IBM InfoSphere Information Server 11.7 is affected by a weak password encryption vulnerability... Moderate Unreviewed

CVE-2018-1518 was published May 13, 2022

IBM Multi-Cloud Data Encryption (MDE) 2.1 could allow an unauthorized user to manipulate data due... Moderate Unreviewed

CVE-2018-1593 was published May 13, 2022

IBM DataPower Gateway 7.6.0.0 through 7.6.0.10, 7.5.2.0 through 7.5.2.17, 7.5.1.0 through 7.5.1... High Unreviewed

CVE-2018-1665 was published May 13, 2022

IBM Security Key Lifecycle Manager 3.0 through 3.0.0.2 uses weaker than expected cryptographic... High Unreviewed

CVE-2018-1751 was published May 13, 2022

IBM Security Access Manager Appliance 9.0.1.0, 9.0.2.0, 9.0.3.0, 9.0.4.0, and 9.0.5.0 uses weaker... High Unreviewed

CVE-2018-1814 was published May 13, 2022

IBM WebShere MQ 9.1.0.0, 9.1.0.1, 9.1.1 uses weaker than expected cryptographic algorithms that... Moderate Unreviewed

CVE-2018-1925 was published May 13, 2022

IBM Security Identity Governance and Intelligence 5.2 through 5.2.4.1 Virtual Appliance supports... High Unreviewed

CVE-2018-1946 was published May 13, 2022

An Inadequate Encryption Strength issue was discovered in Belden Hirschmann RS, RSR, RSB, MACH100... Moderate Unreviewed

CVE-2018-5461 was published May 13, 2022

Users' VPN authentication credentials are unsafely encrypted in Fortinet FortiClient for Windows... High Unreviewed

CVE-2017-17543 was published May 13, 2022

Mozilla Network Security Services (NSS) before 3.15.4, as used in Mozilla Firefox before 27.0,... Moderate Unreviewed

CVE-2014-1491 was published May 13, 2022

The nsSOCKSSocketInfo::ConnectToProxy function in Mozilla Firefox before 18.0, Firefox ESR 17.x... High Unreviewed

CVE-2013-0764 was published May 13, 2022

A vulnerability in the identity management service of Cisco Digital Network Architecture (DNA)... Critical Unreviewed

CVE-2018-0448 was published May 13, 2022

IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products (6... Moderate Unreviewed

CVE-2018-1466 was published May 13, 2022

controller/fetchpwd.php and controller/doAction.php in Hotels_Server through 2018-11-05 rely on... High Unreviewed

CVE-2019-7648 was published May 13, 2022

Previous 1 2 … 12 13 14 15 16 17 18 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

432 advisories