Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

292 advisories

Loading
A vulnerability in Cisco SD-WAN Solution Software could allow an unauthenticated, local attacker... High Unreviewed
CVE-2020-3180 was published May 24, 2022
An issue was discovered on Zolo Halo devices via the Linkplay firmware. There is Zolo Halo LAN... High Unreviewed
CVE-2019-15311 was published May 24, 2022
An issue was discovered in Mattermost Server before 5.8.0. It mishandles brute-force attacks... High Unreviewed
CVE-2019-20881 was published May 24, 2022
Bond JetSelect (all versions) has an issue in the Java class (ENCtool.jar) and corresponding... High Unreviewed
CVE-2019-13022 was published May 24, 2022
In IQrouter through 3.3.1, there is a root user without a password, which allows attackers to... High Unreviewed
CVE-2020-11965 was published May 24, 2022
Iteris Vantage Velocity Field Unit 2.3.1 and 2.4.2 devices have two users that are not documented... High Unreviewed
CVE-2020-9023 was published May 24, 2022
Incorrect access control in the web interface in Ruckus Wireless Unleashed through 200.7.10.102... High Unreviewed
CVE-2019-19843 was published May 24, 2022
The RSA Identity Governance and Lifecycle and RSA Via Lifecycle and Governance products prior to... High Unreviewed
CVE-2019-18572 was published May 24, 2022
Postgresql Windows installer before versions 11.5, 10.10, 9.6.15, 9.5.19, 9.4.24 is vulnerable... High Unreviewed
CVE-2019-10210 was published May 24, 2022
An Information Disclosure issue in Verodin Director 3.5.3.1 and earlier reveals usernames and... High Unreviewed
CVE-2019-10716 was published May 24, 2022
VMware vCenter Server (6.7.x prior to 6.7 U3, 6.5 prior to 6.5 U3 and 6.0 prior to 6.0 U3j)... High Unreviewed
CVE-2019-5532 was published May 24, 2022
VMware vCenter Server (6.7.x prior to 6.7 U3, 6.5 prior to 6.5 U3 and 6.0 prior to 6.0 U3j)... High Unreviewed
CVE-2019-5534 was published May 24, 2022
An issue was discovered in TeamViewer 14.2.2558. Updating the product as a non-administrative... High Unreviewed
CVE-2019-11769 was published May 24, 2022
In Knowage through 6.1.1, an authenticated user who accesses the datasources page will gain... High Unreviewed
CVE-2019-13348 was published May 24, 2022
Zebra Industrial Printers All Versions, Zebra printers are shipped with unrestricted end-user... High Unreviewed
CVE-2019-10960 was published May 24, 2022
CF CLI version prior to v6.45.0 (bosh release version 1.16.0) writes the client id and secret to... High Unreviewed
CVE-2019-3800 was published May 24, 2022
Fleet before 2.1.2 allows exposure of SMTP credentials. High Unreviewed
CVE-2019-1020009 was published May 24, 2022
Calamares through 3.2.4 copies a LUKS encryption keyfile from /crypto_keyfile.bin (mode 0600... High Unreviewed
CVE-2019-13179 was published May 24, 2022
In JetBrains Hub versions earlier than 2018.4.11298, the audit events for SMTPSettings show a... High Unreviewed
CVE-2019-12847 was published May 24, 2022
Cloud Foundry BOSH 267.x versions prior to v267.14.0, and BOSH 270.x versions prior to v270.1.1,... High Unreviewed
CVE-2019-11271 was published May 24, 2022
IBM MQ Advanced Cloud Pak (IBM Cloud Private 1.0.0 through 3.0.1) stores user credentials in... High Unreviewed
CVE-2019-4239 was published May 24, 2022
Kyocera Command Center RX TASKalfa4501i and TASKalfa5052ci allows remote attackers to abuse the... High Unreviewed
CVE-2019-6452 was published May 24, 2022
An issue was discovered in Carel pCOWeb prior to B1.2.4. In /config/pw_changeusers.html the... High Unreviewed
CVE-2019-11369 was published May 24, 2022
In Vijeo Citect 7.30 and 7.40, and CitectSCADA 7.30 and 7.40, a vulnerability has been identified... High Unreviewed
CVE-2019-10981 was published May 24, 2022
The Android mobile application BlueCats Reveal before 3.0.19 stores the username and password in... High Unreviewed
CVE-2019-5626 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database