GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
136 advisories
Filter by severity
An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) (Exynos...
Critical
Unreviewed
CVE-2020-35551
was published
May 24, 2022
In SOOIL Developments Co., Ltd Diabecare RS, AnyDana-i and AnyDana-A, the communication protocol...
Moderate
Unreviewed
CVE-2020-27269
was published
May 24, 2022
A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3)....
High
Unreviewed
CVE-2020-25229
was published
May 24, 2022
Netwrix Account Lockout Examiner before 5.1 allows remote attackers to capture the Net-NTLMv1/v2...
High
Unreviewed
CVE-2020-15931
was published
May 24, 2022
A vulnerability has been identified in Mendix SAML Module (Mendix 7 compatible) (All versions <...
Critical
Unreviewed
CVE-2022-44457
was published
Nov 8, 2022
A vulnerability has been identified in Mendix SAML Module (Mendix 7 compatible) (All versions <...
Critical
Unreviewed
CVE-2022-37011
was published
Sep 14, 2022
Authentication bypass by capture-replay in RPMB protocol message authentication subsystem in...
Moderate
Unreviewed
CVE-2020-12355
was published
May 24, 2022
In JUUKO K-808, an attacker could specially craft a packet that encodes an arbitrary command,...
Critical
Unreviewed
CVE-2018-19025
was published
May 24, 2022
JUUKO K-800 (Firmware versions prior to numbers ending ...9A, ...9B, ...9C, etc.) is vulnerable...
Critical
Unreviewed
CVE-2018-17932
was published
May 24, 2022
A flaw was found in the Cephx authentication protocol in versions before 15.2.6 and before 14.2...
High
Unreviewed
CVE-2020-25660
was published
May 24, 2022
A nonce reuse vulnerability exists in the ACEView service of ALEOS before 4.13.0, 4.9.5, and 4.4...
Moderate
Unreviewed
CVE-2019-11856
was published
May 24, 2022
SAP NetWeaver ABAP Server and ABAP Platform - versions SAP_BASIS 700, 701, 702, 710, 711, 730,...
Critical
Unreviewed
CVE-2023-0014
was published
Jan 10, 2023
The Remote Keyless Entry (RKE) receiving unit on certain Honda vehicles through 2018 allows...
Moderate
Unreviewed
CVE-2022-37305
was published
Aug 25, 2022
The Remote Keyless Entry (RKE) receiving unit on certain Mazda vehicles through 2020 allows...
Moderate
Unreviewed
CVE-2022-36945
was published
Aug 25, 2022
The remote keyless system on Honda HR-V 2017 vehicles sends the same RF signal for each door-open...
Low
Unreviewed
CVE-2019-20626
was published
May 24, 2022
The Remote Keyless Entry (RKE) receiving unit on certain Nissan, Kia, and Hyundai vehicles...
Moderate
Unreviewed
CVE-2022-37418
was published
Aug 25, 2022
An OpenPGP digital signature includes information about the date when the signature was created....
Moderate
Unreviewed
CVE-2022-2226
was published
Dec 22, 2022
An issue was discovered on Fujitsu Wireless Keyboard Set LX390 GK381 devices. Because of the lack...
Moderate
Unreviewed
CVE-2019-18199
was published
May 24, 2022
A vulnerability has been identified in SICAM P850 (All versions < V3.00), SICAM P850 (All...
High
Unreviewed
CVE-2022-29878
was published
May 21, 2022
Xiongmai Camera XM-JPR2-LX V4.02.R12.A6420987.10002.147502.00000 is vulnerable to account takeover.
High
Unreviewed
CVE-2021-38827
was published
Nov 14, 2022
Because the WAVLINK Quantum D4G (WN531G3) running firmware version M31G3.V5030.200325 and earlier...
High
Unreviewed
CVE-2022-40621
was published
Sep 14, 2022
The Sinilink XY-WFT1 WiFi Remote Thermostat, running firmware 1.3.6, allows an attacker to bypass...
Moderate
Unreviewed
CVE-2022-43704
was published
Jan 20, 2023
LTI 1.3 Tool Library's Nonce Claim Value not validated against nonce value sent in Authentication Request before v5.0
High
CVE-2022-31158
was published
for
packbackbooks/lti-1-3-php-library
(Composer)
Jul 15, 2022
relay_cgi.cgi on Dingtian DT-R002 2CH relay devices with firmware 3.1.276A allows an attacker to...
Moderate
Unreviewed
CVE-2022-29593
was published
Jul 15, 2022
Authentication bypass by capture-replay vulnerability exists in Machine automation controller NX7...
High
Unreviewed
CVE-2022-33971
was published
Jul 5, 2022
ProTip!
Advisories are also available from the
GraphQL API