GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,097
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,655
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
172 advisories
Filter by severity
An issue was discovered in certain Apple products. Pages before 6.1, Numbers before 4.1, and...
Moderate
Unreviewed
CVE-2017-2391
was published
May 17, 2022
IBM Tivoli Key Lifecycle Manager 2.5, 2.6, and 2.7 uses weaker than expected cryptographic...
Moderate
Unreviewed
CVE-2017-1664
was published
May 14, 2022
IBM Security Guardium Big Data Intelligence (SonarG) 3.1 uses weaker than expected cryptographic...
Moderate
Unreviewed
CVE-2018-1425
was published
May 14, 2022
IBM BigFix Remote Control before Interim Fix pack 9.1.2-TIV-IBRC912-IF0001 makes it easier for...
Moderate
Unreviewed
CVE-2015-4953
was published
May 14, 2022
IBM Rational Focal Point 6.4.0, 6.4.1, 6.5.1, 6.5.2, and 6.6.0 use a weak algorithm to hash...
Moderate
Unreviewed
CVE-2014-0841
was published
May 14, 2022
xbcrypt in Percona XtraBackup before 2.3.6 and 2.4.x before 2.4.5 does not properly set the...
Moderate
Unreviewed
CVE-2016-6225
was published
May 14, 2022
IBM Tivoli Key Lifecycle Manager 2.5, 2.6, and 2.7 uses weaker than expected cryptographic...
Moderate
Unreviewed
CVE-2017-1665
was published
May 14, 2022
comforte SWAP 1049 through 1069 and 20.0.0 through 21.5.3 (as used in SSLOBJ on HPE NonStop SSL...
Moderate
Unreviewed
CVE-2018-6653
was published
May 13, 2022
An issue was discovered in certain Apple products. iOS before 10.3 is affected. The issue...
Moderate
Unreviewed
CVE-2017-2399
was published
May 13, 2022
IBM InfoSphere Streams 4.2.1 uses weaker than expected cryptographic algorithms that could allow...
Moderate
Unreviewed
CVE-2017-1713
was published
May 13, 2022
Cryptanalysis vulnerability in the web interface in McAfee Network Security Management (NSM)...
Moderate
Unreviewed
CVE-2017-3971
was published
May 13, 2022
The GridServer Broker, GridServer Driver, and GridServer Engine components of TIBCO Software Inc....
Moderate
Unreviewed
CVE-2017-5535
was published
May 13, 2022
An Inadequate Encryption Strength issue was discovered in Mirion Technologies DMC 3000...
Moderate
Unreviewed
CVE-2017-9645
was published
May 13, 2022
A vulnerability in the implementation of RSA-encrypted nonces in Cisco IOS Software and Cisco IOS...
Moderate
Unreviewed
CVE-2018-0131
was published
May 13, 2022
Philips HealthSuite Health Android App, all versions. The software uses simple encryption that is...
Moderate
Unreviewed
CVE-2018-19001
was published
May 13, 2022
IBM InfoSphere Information Server 11.7 is affected by a weak password encryption vulnerability...
Moderate
Unreviewed
CVE-2018-1518
was published
May 13, 2022
IBM Multi-Cloud Data Encryption (MDE) 2.1 could allow an unauthorized user to manipulate data due...
Moderate
Unreviewed
CVE-2018-1593
was published
May 13, 2022
IBM WebShere MQ 9.1.0.0, 9.1.0.1, 9.1.1 uses weaker than expected cryptographic algorithms that...
Moderate
Unreviewed
CVE-2018-1925
was published
May 13, 2022
An Inadequate Encryption Strength issue was discovered in Belden Hirschmann RS, RSR, RSB, MACH100...
Moderate
Unreviewed
CVE-2018-5461
was published
May 13, 2022
Mozilla Network Security Services (NSS) before 3.15.4, as used in Mozilla Firefox before 27.0,...
Moderate
Unreviewed
CVE-2014-1491
was published
May 13, 2022
IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products (6...
Moderate
Unreviewed
CVE-2018-1466
was published
May 13, 2022
IBM Security Access Manager for Web 9.0.0 uses weaker than expected cryptographic algorithms that...
Moderate
Unreviewed
CVE-2016-3019
was published
May 13, 2022
The RC4 algorithm, as used in the TLS protocol and SSL protocol, has many single-byte biases,...
Moderate
Unreviewed
CVE-2013-2566
was published
May 13, 2022
A vulnerability has been identified in DIGSI 4 (All versions < V4.92), EN100 Ethernet module DNP3...
Moderate
Unreviewed
CVE-2018-4839
was published
May 13, 2022
The SSL protocol, as used in certain configurations in Microsoft Windows and Microsoft Internet...
Moderate
Unreviewed
CVE-2011-3389
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API