GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,096
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,654
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
417 advisories
Filter by severity
Dell EMC Networking X-Series firmware versions prior to 3.0.1.8 and Dell EMC PowerEdge VRTX...
Critical
Unreviewed
CVE-2021-21507
was published
May 24, 2022
IBM Spectrum Protect Plus 10.1.0 through 10.1.7 uses weaker than expected cryptographic...
High
Unreviewed
CVE-2021-29694
was published
May 24, 2022
Dell PowerScale OneFS 8.1.0 - 9.1.0 contains an LDAP Provider inability to connect over TLSv1.2...
Critical
Unreviewed
CVE-2020-26197
was published
May 24, 2022
IBM Jazz Team Server products use weaker than expected cryptographic algorithms that could allow...
High
Unreviewed
CVE-2020-4965
was published
May 24, 2022
Using techniques that built on the slipstream research, a malicious webpage could have scanned...
Moderate
Unreviewed
CVE-2021-23982
was published
May 24, 2022
SSH server configuration file does not implement some best practices. This could lead to a...
High
Unreviewed
CVE-2021-27450
was published
May 24, 2022
Zoho ManageEngine Application Control Plus before 100523 has an insecure SSL configuration...
Critical
Unreviewed
CVE-2020-29658
was published
May 24, 2022
On Xerox AltaLink B8045/B8055/B8065/B8075/B8090 and C8030/C8035/C8045/C8055/C8070 multifunction...
High
Unreviewed
CVE-2019-18630
was published
May 24, 2022
An issue was discovered in Joomla! 3.2.0 through 3.9.24. Usage of the insecure rand() function...
Moderate
Unreviewed
CVE-2021-23126
was published
May 24, 2022
usersettings.php in e107 through 2.3.0 lacks a certain e_TOKEN protection mechanism.
High
Unreviewed
CVE-2021-27885
was published
May 24, 2022
Weak encryption in the Quick Pairing mode in the eWeLink mobile application (Android application...
Moderate
Unreviewed
CVE-2020-12702
was published
May 24, 2022
In the ownCloud application before 2.15 for Android, the lock protection mechanism can be...
Moderate
Unreviewed
CVE-2020-36250
was published
May 24, 2022
OpenSSL 1.0.2 supports SSLv2. If a client attempts to negotiate SSLv2 with a server that is...
High
Unreviewed
CVE-2021-23839
was published
May 24, 2022
IBM Security Verify Information Queue 1.0.6 and 1.0.7 uses weaker than expected cryptographic...
Moderate
Unreviewed
CVE-2021-20406
was published
May 24, 2022
An issue was discovered in certain Xerox WorkCentre products. They do not properly encrypt...
High
Unreviewed
CVE-2020-36201
was published
May 24, 2022
A flaw was found in dnsmasq before version 2.83. When getting a reply from a forwarded query,...
Moderate
Unreviewed
CVE-2020-25685
was published
May 24, 2022
Bleichenbacher's attack on PKCS #1 v1.5 padding for RSA in STM32 cryptographic firmware library...
Moderate
Unreviewed
CVE-2020-20949
was published
May 24, 2022
Bleichenbacher's attack on PKCS #1 v1.5 padding for RSA in Microchip Libraries for Applications...
Moderate
Unreviewed
CVE-2020-20950
was published
May 24, 2022
IBM Security Guardium Insights 2.0.2 uses weaker than expected cryptographic algorithms that...
High
Unreviewed
CVE-2020-4594
was published
May 24, 2022
IBM Security Guardium Insights 2.0.2 uses weaker than expected cryptographic algorithms that...
High
Unreviewed
CVE-2020-4595
was published
May 24, 2022
IBM Security Guardium Insights 2.0.2 uses weaker than expected cryptographic algorithms that...
High
Unreviewed
CVE-2020-4596
was published
May 24, 2022
IBM Security Guardium Data Encryption (GDE) 3.0.0.2 uses weaker than expected cryptographic...
High
Unreviewed
CVE-2019-4160
was published
May 24, 2022
The AES encryption project 7.x and 8.x for Drupal does not sufficiently prevent attackers from...
High
Unreviewed
CVE-2017-20001
was published
May 24, 2022
An issue was discovered in Programi Bilanc build 007 release 014 31.01.2020 and possibly below....
High
Unreviewed
CVE-2020-11719
was published
May 24, 2022
OpenSIS Community Edition through 7.6 is affected by incorrect access controls for the file...
High
Unreviewed
CVE-2020-27408
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API