Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,300
Erlang
31
GitHub Actions
21
Go
2,069
Maven
5,000+
npm
3,744
NuGet
668
pip
3,429
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+

433 advisories

Loading
IBM Security Guardium Insights 2.0.2 uses weaker than expected cryptographic algorithms that... High Unreviewed
CVE-2020-4594 was published May 24, 2022
A hardcoded AES key in CipherUtils.java in the Java applet of konzept-ix publiXone before 2020... Moderate Unreviewed
CVE-2020-27181 was published May 24, 2022
IBM Security Guardium Data Encryption (GDE) 3.0.0.2 uses weaker than expected cryptographic... High Unreviewed
CVE-2019-4160 was published May 24, 2022
IBM Security Guardium Insights 2.0.2 uses weaker than expected cryptographic algorithms that... High Unreviewed
CVE-2020-4595 was published May 24, 2022
An issue was discovered in Aviatrix Controller before R6.0.2483. Multiple executable files, that... High Unreviewed
CVE-2020-26552 was published May 24, 2022
Bleichenbacher's attack on PKCS #1 v1.5 padding for RSA in Microchip Libraries for Applications... Moderate Unreviewed
CVE-2020-20950 was published May 24, 2022
Bleichenbacher's attack on PKCS #1 v1.5 padding for RSA in STM32 cryptographic firmware library... Moderate Unreviewed
CVE-2020-20949 was published May 24, 2022
In the ownCloud application before 2.15 for Android, the lock protection mechanism can be... Moderate Unreviewed
CVE-2020-36250 was published May 24, 2022
An issue was discovered in certain Xerox WorkCentre products. They do not properly encrypt... High Unreviewed
CVE-2020-36201 was published May 24, 2022
Zoho ManageEngine Application Control Plus before 100523 has an insecure SSL configuration... Critical Unreviewed
CVE-2020-29658 was published May 24, 2022
When viewing an email message A, which contains an attached message B, where B is encrypted or... Moderate Unreviewed
CVE-2022-1520 was published Dec 22, 2022
An issue was discovered in Programi Bilanc build 007 release 014 31.01.2020 and possibly below.... High Unreviewed
CVE-2020-11719 was published May 24, 2022
Weak encryption in the Quick Pairing mode in the eWeLink mobile application (Android application... Moderate Unreviewed
CVE-2020-12702 was published May 24, 2022
The AES encryption project 7.x and 8.x for Drupal does not sufficiently prevent attackers from... High Unreviewed
CVE-2017-20001 was published May 24, 2022
On Xerox AltaLink B8045/B8055/B8065/B8075/B8090 and C8030/C8035/C8045/C8055/C8070 multifunction... High Unreviewed
CVE-2019-18630 was published May 24, 2022
IBM Security Guardium Insights 2.0.2 uses weaker than expected cryptographic algorithms that... High Unreviewed
CVE-2020-4596 was published May 24, 2022
Dell EMC Networking X-Series firmware versions prior to 3.0.1.8 and Dell EMC PowerEdge VRTX... Critical Unreviewed
CVE-2021-21507 was published May 24, 2022
SSH server configuration file does not implement some best practices. This could lead to a... High Unreviewed
CVE-2021-27450 was published May 24, 2022
Using techniques that built on the slipstream research, a malicious webpage could have scanned... Moderate Unreviewed
CVE-2021-23982 was published May 24, 2022
Weak Encoding for Password in DoraCMS v2.1.1 and earlier allows attackers to obtain sensitive... High Unreviewed
CVE-2020-18220 was published May 24, 2022
Password generator feature in Kaspersky Password Manager was not completely cryptographically... High Unreviewed
CVE-2020-27020 was published May 24, 2022
The flash read-out protection (RDP) level is not enforced during the device initialization phase... Moderate Unreviewed
CVE-2020-27208 was published May 24, 2022
In VOS compromised, an attacker at network endpoints can possibly view communications between an... Moderate Unreviewed
CVE-2018-16499 was published May 24, 2022
Inadequate Encryption Strength in showdoc Moderate
CVE-2021-3680 was published for showdoc/showdoc (Composer) Sep 1, 2021
The host SSH servers of Brocade Fabric OS before Brocade Fabric OS v7.4.2h, v8.2.1c, v8.2.2, v9.0... High Unreviewed
CVE-2020-15387 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database