Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,096
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,654
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+

417 advisories

Loading
Dell EMC Networking X-Series firmware versions prior to 3.0.1.8 and Dell EMC PowerEdge VRTX... Critical Unreviewed
CVE-2021-21507 was published May 24, 2022
IBM Spectrum Protect Plus 10.1.0 through 10.1.7 uses weaker than expected cryptographic... High Unreviewed
CVE-2021-29694 was published May 24, 2022
Dell PowerScale OneFS 8.1.0 - 9.1.0 contains an LDAP Provider inability to connect over TLSv1.2... Critical Unreviewed
CVE-2020-26197 was published May 24, 2022
IBM Jazz Team Server products use weaker than expected cryptographic algorithms that could allow... High Unreviewed
CVE-2020-4965 was published May 24, 2022
Using techniques that built on the slipstream research, a malicious webpage could have scanned... Moderate Unreviewed
CVE-2021-23982 was published May 24, 2022
SSH server configuration file does not implement some best practices. This could lead to a... High Unreviewed
CVE-2021-27450 was published May 24, 2022
Zoho ManageEngine Application Control Plus before 100523 has an insecure SSL configuration... Critical Unreviewed
CVE-2020-29658 was published May 24, 2022
On Xerox AltaLink B8045/B8055/B8065/B8075/B8090 and C8030/C8035/C8045/C8055/C8070 multifunction... High Unreviewed
CVE-2019-18630 was published May 24, 2022
An issue was discovered in Joomla! 3.2.0 through 3.9.24. Usage of the insecure rand() function... Moderate Unreviewed
CVE-2021-23126 was published May 24, 2022
usersettings.php in e107 through 2.3.0 lacks a certain e_TOKEN protection mechanism. High Unreviewed
CVE-2021-27885 was published May 24, 2022
Weak encryption in the Quick Pairing mode in the eWeLink mobile application (Android application... Moderate Unreviewed
CVE-2020-12702 was published May 24, 2022
In the ownCloud application before 2.15 for Android, the lock protection mechanism can be... Moderate Unreviewed
CVE-2020-36250 was published May 24, 2022
OpenSSL 1.0.2 supports SSLv2. If a client attempts to negotiate SSLv2 with a server that is... High Unreviewed
CVE-2021-23839 was published May 24, 2022
IBM Security Verify Information Queue 1.0.6 and 1.0.7 uses weaker than expected cryptographic... Moderate Unreviewed
CVE-2021-20406 was published May 24, 2022
An issue was discovered in certain Xerox WorkCentre products. They do not properly encrypt... High Unreviewed
CVE-2020-36201 was published May 24, 2022
A flaw was found in dnsmasq before version 2.83. When getting a reply from a forwarded query,... Moderate Unreviewed
CVE-2020-25685 was published May 24, 2022
Bleichenbacher's attack on PKCS #1 v1.5 padding for RSA in STM32 cryptographic firmware library... Moderate Unreviewed
CVE-2020-20949 was published May 24, 2022
Bleichenbacher's attack on PKCS #1 v1.5 padding for RSA in Microchip Libraries for Applications... Moderate Unreviewed
CVE-2020-20950 was published May 24, 2022
IBM Security Guardium Insights 2.0.2 uses weaker than expected cryptographic algorithms that... High Unreviewed
CVE-2020-4594 was published May 24, 2022
IBM Security Guardium Insights 2.0.2 uses weaker than expected cryptographic algorithms that... High Unreviewed
CVE-2020-4595 was published May 24, 2022
IBM Security Guardium Insights 2.0.2 uses weaker than expected cryptographic algorithms that... High Unreviewed
CVE-2020-4596 was published May 24, 2022
IBM Security Guardium Data Encryption (GDE) 3.0.0.2 uses weaker than expected cryptographic... High Unreviewed
CVE-2019-4160 was published May 24, 2022
The AES encryption project 7.x and 8.x for Drupal does not sufficiently prevent attackers from... High Unreviewed
CVE-2017-20001 was published May 24, 2022
An issue was discovered in Programi Bilanc build 007 release 014 31.01.2020 and possibly below.... High Unreviewed
CVE-2020-11719 was published May 24, 2022
OpenSIS Community Edition through 7.6 is affected by incorrect access controls for the file... High Unreviewed
CVE-2020-27408 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database