Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,014
Maven
5,000+
npm
3,721
NuGet
662
pip
3,393
Pub
11
RubyGems
890
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+

430 advisories

Loading
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware... High Unreviewed
CVE-2017-14426 was published May 13, 2022
In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the... High Unreviewed
CVE-2017-11026 was published May 13, 2022
Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, uses hard... High Unreviewed
CVE-2016-9495 was published May 13, 2022
A vulnerability in Cisco Umbrella Insights Virtual Appliances 2.1.0 and earlier could allow an... High Unreviewed
CVE-2017-12350 was published May 13, 2022
Live.me - live stream video chat, 3.7.20, 2017-11-06, Android application uses a hard-coded key... High Unreviewed
CVE-2017-13107 was published May 13, 2022
Cheetahmobile CM Launcher 3D - Theme, wallpaper, Secure, Efficient, 5.0.3, 2017-09-19, Android... High Unreviewed
CVE-2017-13106 was published May 13, 2022
Musical.ly Inc., musical.ly - your video social network, 6.1.6, 2017-10-03, iOS application uses... High Unreviewed
CVE-2017-13101 was published May 13, 2022
DFNDR Security Antivirus, Anti-hacking & Cleaner, 5.0.9, 2017-11-01, Android application uses a... High Unreviewed
CVE-2017-13108 was published May 13, 2022
Uber Technologies, Inc. UberEATS: Uber for Food Delivery, 1.108.10001, 2017-11-02, iOS... High Unreviewed
CVE-2017-13104 was published May 13, 2022
DistinctDev, Inc., The Moron Test, 6.3.1, 2017-05-04, iOS application uses a hard-coded key for... High Unreviewed
CVE-2017-13100 was published May 13, 2022
Gameloft Asphalt Xtreme: Offroad Rally Racing, 1.6.0, 2017-08-13, iOS application uses a hard... High Unreviewed
CVE-2017-13102 was published May 13, 2022
A Use of Hard-Coded Cryptographic Key issue was discovered in Hyundai Motor America Blue Link 3.9... High Unreviewed
CVE-2017-6054 was published May 13, 2022
It was found that a mock CMC authentication plugin with a hardcoded secret was accidentally... High Unreviewed
CVE-2017-7537 was published May 13, 2022
A Use of Password Hash Instead of Password for Authentication issue was discovered in Dahua DH... High Unreviewed
CVE-2017-7927 was published May 13, 2022
A vulnerability in Cisco Prime Collaboration Provisioning (PCP) Software 11.6 could allow an... High Unreviewed
CVE-2018-0141 was published May 13, 2022
In Philips PageWriter TC10, TC20, TC30, TC50, TC70 Cardiographs, all versions prior to May 2018,... High Unreviewed
CVE-2018-14801 was published May 13, 2022
The Dell Wyse Password Encoder in ThinLinux2 versions prior to 2.1.0.01 contain a Hard-coded... High Unreviewed
CVE-2018-15781 was published May 13, 2022
EasyLobby Solo contains default administrative credentials. An attacker could exploit this... High Unreviewed
CVE-2018-17492 was published May 13, 2022
Yokogawa STARDOM Controllers FCJ, FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The... High Unreviewed
CVE-2018-17896 was published May 13, 2022
IBM Security Access Manager Appliance 9.0.1.0, 9.0.2.0, 9.0.3.0, 9.0.4.0, and 9.0.5.0 contains... High Unreviewed
CVE-2018-1887 was published May 13, 2022
A reliance on a static, hard-coded credential in the design of the cloud-based storage system of... High Unreviewed
CVE-2018-5560 was published May 13, 2022
Philips Brilliance CT software (Brilliance 64 version 2.6.2 and prior, Brilliance iCT versions 4... High Unreviewed
CVE-2018-8857 was published May 13, 2022
Medtronic MyCareLink Patient Monitor, 24950 MyCareLink Monitor, all versions, and 24952... High Unreviewed
CVE-2018-8870 was published May 13, 2022
A vulnerability in the default configuration of the Cisco Aironet Active Sensor could allow an... High Unreviewed
CVE-2019-1675 was published May 13, 2022
A vulnerability in the management web interface of Cisco Network Assurance Engine (NAE) could... High Unreviewed
CVE-2019-1688 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database