GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,259
Composer 4,354
Erlang 31
GitHub Actions 22
Go 2,120
Maven 5,293
npm 3,779
NuGet 681
pip 3,460
Pub 12
RubyGems 892
Rust 888
Swift 38

Unreviewed advisories

All unreviewed 243,864

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

386 advisories

Filter by severity

Sort by

Least recently updated

Electra Central AC unit – The unit opens an AP with an easily calculated password. Moderate Unreviewed

CVE-2023-24502 was published Jul 6, 2023

The class FileTransfer implemented in Brocade SANnav before v2.3.1, v2.3.0a, uses the ssh-rsa... High Unreviewed

CVE-2024-29950 was published Apr 17, 2024

When a Brocade SANnav installation is upgraded from Brocade SANnav v2.2.2 to Brocade SANnav 2.3.0... High Unreviewed

CVE-2024-29969 was published Apr 19, 2024

Brocade SANnav before v2.3.1 and v2.3.0a uses the SHA-1 hash in internal SSH ports that are not... Moderate Unreviewed

CVE-2024-29951 was published Apr 17, 2024

Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 was discovered to contain a hard... High Unreviewed

CVE-2023-30351 was published May 10, 2023

In multiple places of AccessibilityService, there is a possible way to hide the app from the user... High Unreviewed

CVE-2023-21109 was published May 16, 2023

Weak encryption algorithm in Easy-RSA version 3.0.5 through 3.1.7 allows a local attacker to more... Moderate Unreviewed

CVE-2024-13454 was published Jan 20, 2025

A vulnerability exists in Algo Edge up to 2.1.1 - a previously used (legacy) component of navify®... Moderate Unreviewed

CVE-2024-13026 was published Jan 17, 2025

The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.4. An app... High Unreviewed

CVE-2023-32414 was published Jun 23, 2023

An issue was discovered in SubmitEntityAction in Wikibase in MediaWiki through 1.39.3. Because it... Moderate Unreviewed

CVE-2023-37301 was published Jun 30, 2023

A vulnerability in the sftunnel functionality of Cisco Firepower Management Center (FMC) Software... High Unreviewed

CVE-2020-3549 was published May 24, 2022

In openMmapStream of AudioFlinger.cpp, there is a possible way to record audio without displaying... Moderate Unreviewed

CVE-2023-20942 was published Jul 13, 2023

Nokia SR OS bof.cfg file encryption is vulnerable to a brute force attack. This weakness allows... Low Unreviewed

CVE-2023-6728 was published Oct 17, 2024

An issue was discovered on certain GL-iNet devices, including MT6000, MT3000, MT2500, AXT1800,... Moderate Unreviewed

CVE-2024-45259 was published Oct 24, 2024

The RC4 algorithm, as used in the TLS protocol and SSL protocol, has many single-byte biases,... Moderate Unreviewed

CVE-2013-2566 was published May 13, 2022

An unauthenticated local attacker can decrypt the devices config file and therefore compromise... High Unreviewed

CVE-2024-45273 was published Oct 15, 2024

An issue in DrayTek Vigor310 devices through 4.3.2.6 allows an attacker to obtain sensitive... High Unreviewed

CVE-2024-41594 was published Oct 3, 2024

The swctrl service is used to detect and remotely manage PLANET Technology devices. For certain... High Unreviewed

CVE-2024-8455 was published Sep 30, 2024

OpenSlides 4.0.15 was discovered to be using a weak hashing algorithm to store passwords. High Unreviewed

CVE-2024-22892 was published Sep 25, 2024

Broadcom RAID Controller web interface is vulnerable to exposure of sensitive data and the keys... Moderate Unreviewed

CVE-2023-4333 was published Aug 15, 2023

An issue was discovered in Couchbase Server before 7.2.5 and 7.6.0 before 7.6.1. It does not... Moderate Unreviewed

CVE-2024-37034 was published Jul 27, 2024

Exposure of Private Personal Information to an Unauthorized Actor in GitHub repository gnuboard... High Unreviewed

CVE-2022-1252 was published Apr 12, 2022

Exposure of information intended to be encrypted by some Zoom clients may lead to disclosure of... High Unreviewed

CVE-2023-36539 was published Jun 30, 2023

An issue was discovered in Mbed TLS 3.5.x before 3.6.0. When an SSL context was reset with the... Moderate Unreviewed

CVE-2024-28755 was published Apr 3, 2024

Insufficient or weak TLS protocol version identified in Advance authentication client server... High Unreviewed

CVE-2021-38121 was published Aug 28, 2024

Previous 1 2 3 4 5 … 15 16 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

386 advisories