GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,369
Composer 4,373
Erlang 33
GitHub Actions 22
Go 2,135
Maven 5,313
npm 3,797
NuGet 687
pip 3,478
Pub 12
RubyGems 896
Rust 897
Swift 38

Unreviewed advisories

All unreviewed 245,341

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

413 advisories

Filter by severity

Sort by

Least recently updated

The ATOM (ATOM - Smart life App for Android versions prior to 1.8.1 and ATOM - Smart life App for... Moderate Unreviewed

CVE-2021-20732 was published May 24, 2022

All versions of GitLab CE/EE starting with 12.8 were affected by an issue in the handling of x509... Moderate Unreviewed

CVE-2021-22218 was published May 24, 2022

Dell EMC NetWorker, versions 18.x, 19.1.x, 19.2.x 19.3.x, 19.4, and 19.4.0.1 contain an Improper... Moderate Unreviewed

CVE-2021-21559 was published May 24, 2022

Pax Technology PAXSTORE v7.0.8_20200511171508 and lower is affected by an information disclosure... Moderate Unreviewed

CVE-2020-36127 was published May 24, 2022

Fibaro Home Center 2 and Lite devices with firmware version 4.600 and older initiate SSH... Moderate Unreviewed

CVE-2021-20989 was published May 24, 2022

Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber... Moderate Unreviewed

CVE-2021-1471 was published May 24, 2022

This vulnerability allows network-adjacent attackers to compromise the integrity of downloaded... Moderate Unreviewed

CVE-2021-27257 was published May 24, 2022

The CIRA Canadian Shield app before 4.0.13 for iOS lacks SSL Certificate Validation. Moderate Unreviewed

CVE-2021-27189 was published May 24, 2022

ELECOM WRC-300FEBK-S contains an improper certificate validation vulnerability. Via a man-in-the... Moderate Unreviewed

CVE-2021-20649 was published May 24, 2022

Nessus AMI versions 8.12.0 and earlier were found to either not validate, or incorrectly validate... Moderate Unreviewed

CVE-2020-5812 was published May 24, 2022

jxbrowser in TI Code Composer Studio IDE 8.x through 10.x before 10.1.1 does not verify X.509... Moderate Unreviewed

CVE-2021-3285 was published May 24, 2022

Multiple vulnerabilities in Cisco Data Center Network Manager (DCNM) could allow an attacker to... Moderate Unreviewed

CVE-2021-1276 was published May 24, 2022

Multiple vulnerabilities in Cisco Data Center Network Manager (DCNM) could allow an attacker to... Moderate Unreviewed

CVE-2021-1277 was published May 24, 2022

A flaw was found in JBCS httpd in version 2.4.37 SP3, where it uses a back-end worker SSL... Moderate Unreviewed

CVE-2020-25680 was published May 24, 2022

iSM client versions from V5.1 prior to V12.1 running on NEC Storage Manager or NEC Storage... Moderate Unreviewed

CVE-2020-5684 was published May 24, 2022

Tesla Model X vehicles before 2020-11-23 do not perform certificate validation during an attempt... Moderate Unreviewed

CVE-2020-29440 was published May 24, 2022

An issue exists in PrimeKey EJBCA before 7.4.3 when enrolling with EST while proxied through an... Moderate Unreviewed

CVE-2020-28942 was published May 24, 2022

An issue existed in the handling of S-MIME certificates. This issue was addressed with improved... Moderate Unreviewed

CVE-2019-8642 was published May 24, 2022

A vulnerability in the host input API daemon of Cisco Firepower Management Center (FMC) Software... Moderate Unreviewed

CVE-2020-3557 was published May 24, 2022

GNOME Geary before 3.36.3 mishandles pinned TLS certificate verification for IMAP and SMTP... Moderate Unreviewed

CVE-2020-24661 was published May 24, 2022

An issue was discovered in Octopus Deploy 3.4. A deployment target can be configured with an... Moderate Unreviewed

CVE-2020-16197 was published May 24, 2022

eM Client before 7.2.33412.0 automatically imported S/MIME certificates and thereby silently... Moderate Unreviewed

CVE-2020-12618 was published May 24, 2022

MailMate before 1.11 automatically imported S/MIME certificates and thereby silently replaced... Moderate Unreviewed

CVE-2020-12619 was published May 24, 2022

CS2 Network P2P through 3.x, as used in millions of Internet of Things devices, suffers from an... Moderate Unreviewed

CVE-2020-9525 was published May 24, 2022

An issue was discovered in NLnet Labs Routinator 0.1.0 through 0.7.1. It allows remote attackers... Moderate Unreviewed

CVE-2020-17366 was published May 24, 2022

Previous 1 2 3 4 5 6 7 8 … 16 17 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

413 advisories