GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,572
Composer 4,205
Erlang 31
GitHub Actions 19
Go 1,986
Maven 5,163
npm 3,703
NuGet 661
pip 3,329
Pub 11
RubyGems 884
Rust 843
Swift 36

Unreviewed advisories

All unreviewed 234,070

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

314 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability has been identified in SIMATIC HMI Comfort Panels (incl. SIPLUS variants) (All... Critical Unreviewed

CVE-2020-15798 was published May 24, 2022

A Missing Authentication for Critical Function issue was discovered in OPW Fuel Management... Critical Unreviewed

CVE-2017-12733 was published May 13, 2022

In Universal Robots Robot Controllers Version CB 3.1, SW Version 3.4.5-100, ports 30001/TCP to... Critical Unreviewed

CVE-2018-10635 was published May 13, 2022

A vulnerability in the Policy Builder database of Cisco Policy Suite before 18.2.0 could allow an... Critical Unreviewed

CVE-2018-0374 was published May 13, 2022

A vulnerability in the Policy Builder interface of Cisco Policy Suite before 18.2.0 could allow... Critical Unreviewed

CVE-2018-0376 was published May 13, 2022

A Missing Authentication for Critical Function issue was discovered in Schneider Electric... Critical Unreviewed

CVE-2017-13997 was published May 13, 2022

An Improper Authorization issue was discovered in Sierra Wireless AirLink Raven XE, all versions... Critical Unreviewed

CVE-2017-6044 was published May 13, 2022

WiMAX routers based on the MediaTek SDK (libmtk) that use a custom httpd plugin are vulnerable to... Critical Unreviewed

CVE-2017-3216 was published May 13, 2022

Remote enabling and disabling admin interface in Gemalto's HASP SRM, Sentinel HASP and Sentinel... Critical Unreviewed

CVE-2017-12822 was published May 13, 2022

register_send.php on D-Link DIR-850L REV. B (with firmware through FW208WWb02) devices does not... Critical Unreviewed

CVE-2017-14417 was published May 13, 2022

Trustwave Secure Web Gateway (SWG) through 11.8.0.27 allows remote attackers to append an... Critical Unreviewed

CVE-2017-18001 was published May 13, 2022

VMware vCenter Server 5.5, 6.0, 6.5 allows vSphere users with certain, limited vSphere privileges... Critical Unreviewed

CVE-2017-4919 was published May 13, 2022

An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and... Critical Unreviewed

CVE-2017-6409 was published May 13, 2022

An issue was discovered on Humax Digital HG100R 2.0.6 devices. To download the backup file it's... Critical Unreviewed

CVE-2017-7315 was published May 13, 2022

An issue was discovered in Zoho ManageEngine Desktop Central 10.0.124 and 10.0.184: insufficient... Critical Unreviewed

CVE-2018-5339 was published May 13, 2022

HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allow remote attackers... Critical Unreviewed

CVE-2016-2004 was published May 14, 2022

PC Keyboard allows remote unauthenticated users to send instructions to the server to execute... Critical Unreviewed

CVE-2022-45479 was published Dec 5, 2022

Telepad allows remote unauthenticated users to send instructions to the server to execute... Critical Unreviewed

CVE-2022-45477 was published Dec 5, 2022

The default configuration of Lazy Mouse does not require a password, allowing remote... Critical Unreviewed

CVE-2022-45481 was published Dec 5, 2022

An issue was discovered in Zoho ManageEngine Desktop Central 10.0.124 and 10.0.184: missing... Critical Unreviewed

CVE-2018-5338 was published May 14, 2022

AVEVA Software, LLC InduSoft Web Studio prior to Version 8.1 SP3 and InTouch Edge HMI (formerly... Critical Unreviewed

CVE-2019-6543 was published May 13, 2022

The JMX/RMI interface in Nasdaq BWise 5.0 does not require authentication for an SAP BO Component... Critical Unreviewed

CVE-2018-11247 was published May 14, 2022

In Schneider Electric Evlink Charging Station versions prior to v3.2.0-12_v1, the Web Interface... Critical Unreviewed

CVE-2018-7778 was published May 14, 2022

Contec Smart Home 4.15 devices do not require authentication for new_user.php, edit_user.php,... Critical Unreviewed

CVE-2018-9162 was published May 14, 2022

SAP NetWeaver System Landscape Directory, LM-CORE 7.10, 7.20, 7.30, 7.31, 7.40, does not perform... Critical Unreviewed

CVE-2018-2368 was published May 14, 2022

Previous 1 2 3 4 5 6 7 8 … 12 13 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

314 advisories