GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,536
Composer 4,189
Erlang 31
GitHub Actions 19
Go 1,985
Maven 5,160
npm 3,701
NuGet 657
pip 3,326
Pub 11
RubyGems 882
Rust 836
Swift 35

Unreviewed advisories

All unreviewed 233,438

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,148 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability has been identified in RAPIDLab 1200 systems / RAPIDPoint 400 systems /... Critical Unreviewed

CVE-2018-4846 was published May 13, 2022

The Auto-Maskin DCU 210E firmware contains an undocumented Dropbear SSH server, v2015.55,... Critical Unreviewed

CVE-2018-5399 was published May 13, 2022

Versions of DocuTrac QuicDoc and Office Therapy that ship with DTISQLInstaller.exe version 1.6.4... Low Unreviewed

CVE-2018-5552 was published May 13, 2022

Versions of DocuTrac QuicDoc and Office Therapy that ship with DTISQLInstaller.exe version 1.6.4... Critical Unreviewed

CVE-2018-5551 was published May 13, 2022

A reliance on a static, hard-coded credential in the design of the cloud-based storage system of... High Unreviewed

CVE-2018-5560 was published May 13, 2022

Philips Brilliance CT software (Brilliance 64 version 2.6.2 and prior, Brilliance iCT versions 4... High Unreviewed

CVE-2018-8857 was published May 13, 2022

Medtronic MyCareLink Patient Monitor, 24950 MyCareLink Monitor, all versions, and 24952... High Unreviewed

CVE-2018-8870 was published May 13, 2022

Juniper ATP ships with hard coded credentials in the Cyphort Core instance which gives an... Critical Unreviewed

CVE-2019-0022 was published May 13, 2022

Juniper ATP ships with hard coded credentials in the Web Collector instance which gives an... Critical Unreviewed

CVE-2019-0020 was published May 13, 2022

A vulnerability in the default configuration of the Cisco Aironet Active Sensor could allow an... High Unreviewed

CVE-2019-1675 was published May 13, 2022

A vulnerability in the management web interface of Cisco Network Assurance Engine (NAE) could... High Unreviewed

CVE-2019-1688 was published May 13, 2022

Premisys Identicard version 3.1.190 contains hardcoded credentials in the WCF service on port... High Unreviewed

CVE-2019-3906 was published May 13, 2022

Premisys Identicard version 3.1.190 stores backup files as encrypted zip files. The password to... High Unreviewed

CVE-2019-3908 was published May 13, 2022

The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 contains multiple hard... Critical Unreviewed

CVE-2019-3918 was published May 13, 2022

A vulnerability in Cisco IOS XE Software could allow an unauthenticated, remote attacker to log... Critical Unreviewed

CVE-2018-0150 was published May 13, 2022

The Norton Identity Safe product prior to 5.3.0.976 may be susceptible to a privilege escalation... Moderate Unreviewed

CVE-2018-12240 was published May 13, 2022

The backdoor account dnsekakf2$$ in /bin/login on DASAN H665 devices with firmware 1.46p1-0028... Critical Unreviewed

CVE-2019-8950 was published May 13, 2022

IBM Security Identity Manager 7.0.1 Virtual Appliance contains hard-coded credentials, such as a... High Unreviewed

CVE-2018-1959 was published May 13, 2022

spaces.htm on multiple D-Link devices (DSL, DIR, DWR) allows remote unauthenticated attackers to... Critical Unreviewed

CVE-2018-18008 was published May 13, 2022

Eaton Power Xpert Meter 4000, 6000, and 8000 devices before 13.4.0.10 have a single SSH private... Critical Unreviewed

CVE-2018-16158 was published May 13, 2022

Use of a Hard-coded Cryptographic Key used to protect cookie session data in /var/www/xms... Critical Unreviewed

CVE-2018-11635 was published May 13, 2022

A vulnerability in the Cisco Small Business Switches software could allow an unauthenticated,... Critical Unreviewed

CVE-2018-15439 was published May 13, 2022

A vulnerability in the default configuration of the Simple Network Management Protocol (SNMP)... Moderate Unreviewed

CVE-2018-0329 was published May 13, 2022

The trove service user in (1) Openstack deployment (aka crowbar-openstack) and (2) Trove Barclamp... Critical Unreviewed

CVE-2016-6829 was published May 13, 2022

An issue was discovered in the MBeans Server in Wowza Streaming Engine before 4.7.1. The file... Critical Unreviewed

CVE-2018-7047 was published May 13, 2022

Previous 1 2 … 39 40 41 42 43 44 45 46 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,148 advisories