Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,373
Erlang
33
GitHub Actions
22
Go
2,135
Maven
5,000+
npm
3,797
NuGet
687
pip
3,478
Pub
12
RubyGems
896
Rust
897
Swift
38
Unreviewed advisories
All unreviewed
5,000+

447 advisories

Loading
RICOH Interactive Whiteboard D2200 V1.1 to V2.2, D5500 V1.1 to V2.2, D5510 V1.1 to V2.2, the... High Unreviewed
CVE-2018-16186 was published May 14, 2022
Teradata Viewpoint before 14.0 and 16.20.00.02-b80 contains a hardcoded password of TDv1i2e3w4... High Unreviewed
CVE-2019-6499 was published May 14, 2022
The Zyxel Multy X (AC3000 Tri-Band WiFi System) device doesn't use a suitable mechanism to... High Unreviewed
CVE-2018-9149 was published May 14, 2022
An issue was discovered on Teracue ENC-400 devices with firmware 2.56 and below. After successful... High Unreviewed
CVE-2018-20219 was published May 14, 2022
DASAN H660RM devices with firmware 1.03-0022 use a hard-coded key for logs encryption. Data... High Unreviewed
CVE-2019-9975 was published May 14, 2022
Sensitive data stored by Lenovo Fingerprint Manager Pro, version 8.01.86 and earlier, including... High Unreviewed
CVE-2017-3762 was published May 14, 2022
SonicWall SMA1000 series firmware 12.4.0, 12.4.1-02965 and earlier versions uses a shared and... High Unreviewed
CVE-2022-1701 was published May 14, 2022
In System Management Module (SMM) versions prior to 1.06, the SMM contains weak default root... High Unreviewed
CVE-2018-9083 was published May 13, 2022
An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x before 5.8.6.9 and 5.9.x... High Unreviewed
CVE-2018-5797 was published May 13, 2022
MASTER IPCAMERA01 3.3.4.2103 devices allow Unauthenticated Configuration Change, as demonstrated... High Unreviewed
CVE-2018-5725 was published May 13, 2022
A vulnerability in the permission and encryption implementation of Zemana Anti-Logger 1.9.3.527... High Unreviewed
CVE-2018-15491 was published May 13, 2022
An attacker without authentication can login with default credentials for privileged users in... High Unreviewed
CVE-2018-15360 was published May 13, 2022
The EPSON iPrint application 6.6.3 for Android contains hard-coded API and Secret keys for the... High Unreviewed
CVE-2018-14901 was published May 13, 2022
On the TP-Link TL-SG108E 1.0, there is a hard-coded ciphering key (a long string beginning with... High Unreviewed
CVE-2017-8077 was published May 13, 2022
In net.MCrypt in the "Diary with lock" (aka WriteDiary) application 4.72 for Android, hardcoded... High Unreviewed
CVE-2017-15582 was published May 13, 2022
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware... High Unreviewed
CVE-2017-14428 was published May 13, 2022
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware... High Unreviewed
CVE-2017-14426 was published May 13, 2022
In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the... High Unreviewed
CVE-2017-11026 was published May 13, 2022
Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, uses hard... High Unreviewed
CVE-2016-9495 was published May 13, 2022
A vulnerability in Cisco Umbrella Insights Virtual Appliances 2.1.0 and earlier could allow an... High Unreviewed
CVE-2017-12350 was published May 13, 2022
Cheetahmobile CM Launcher 3D - Theme, wallpaper, Secure, Efficient, 5.0.3, 2017-09-19, Android... High Unreviewed
CVE-2017-13106 was published May 13, 2022
Uber Technologies, Inc. UberEATS: Uber for Food Delivery, 1.108.10001, 2017-11-02, iOS... High Unreviewed
CVE-2017-13104 was published May 13, 2022
Musical.ly Inc., musical.ly - your video social network, 6.1.6, 2017-10-03, iOS application uses... High Unreviewed
CVE-2017-13101 was published May 13, 2022
Gameloft Asphalt Xtreme: Offroad Rally Racing, 1.6.0, 2017-08-13, iOS application uses a hard... High Unreviewed
CVE-2017-13102 was published May 13, 2022
Live.me - live stream video chat, 3.7.20, 2017-11-06, Android application uses a hard-coded key... High Unreviewed
CVE-2017-13107 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database