Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,792
Erlang
36
GitHub Actions
29
Go
2,377
Maven
5,000+
npm
4,002
NuGet
720
pip
3,802
Pub
12
RubyGems
927
Rust
984
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

35 advisories

Loading
A channel accessible by non-endpoint vulnerability [CWE-300] in Fortinet FortiOS version 7.4.0... Moderate Unreviewed
CVE-2024-50568 was published Jun 10, 2025
This issue was addressed through improved state management. This issue is fixed in iOS 18.5 and... High Unreviewed
CVE-2025-31214 was published May 13, 2025
A vulnerability in the CLI of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could... High Unreviewed
CVE-2025-20122 was published May 7, 2025
A vulnerability was discovered in Siemens SiPass integrated (All versions before V2.70) that... High Unreviewed
CVE-2017-9941 was published May 13, 2022
A vulnerability was discovered in Siemens SIMATIC WinCC Sm@rtClient for Android (All versions... High Unreviewed
CVE-2017-6870 was published May 13, 2022
rkhunter versions before 1.4.4 are vulnerable to file download over insecure channel when doing... Critical Unreviewed
CVE-2017-7480 was published May 13, 2022
A Man-in-the-Middle issue was discovered in Hyundai Motor America Blue Link 3.9.5 and 3.9.4.... Moderate Unreviewed
CVE-2017-6052 was published May 13, 2022
A improper restriction of communication channel to intended endpoints vulnerability [CWE-923] in... Low Unreviewed
CVE-2024-50565 was published Apr 8, 2025
easyMINE before 2019-12-05 ships with SSH host keys baked into the installation image, which... Moderate Unreviewed
CVE-2019-19751 was published Apr 30, 2024
IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.36 iFix1, 2... Moderate Unreviewed
CVE-2023-38272 was published Mar 27, 2025
The mobile application (com.transsnet.store) has a man-in-the-middle attack vulnerability, which... High Unreviewed
CVE-2025-2190 was published Mar 11, 2025
Forever KidsWatch Call Me KW-50 R36_YDR_A3PW_GM7S_V1.0_2019_07_15_16.19.24_cob_h is vulnerable to... High Unreviewed
CVE-2024-36553 was published Feb 6, 2025
2N Access Commander version 2.1 and prior is vulnerable in default settings to Man In The Middle... High Unreviewed
CVE-2024-47258 was published Feb 6, 2025
Identity verification vulnerability in the ParamWatcher module Impact: Successful exploitation of... Moderate Unreviewed
CVE-2024-12602 was published Feb 6, 2025
IBM Sterling B2B Integrator 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.1 could allow an... Moderate Unreviewed
CVE-2024-27263 was published Jan 28, 2025
A vulnerability was found in systemd-resolved. This issue may allow systemd-resolved to accept... Moderate Unreviewed
CVE-2023-7008 was published Dec 23, 2023
ethOS through 1.3.3 ships with SSH host keys baked into the installation image, which allows man... Critical Unreviewed
CVE-2019-19755 was published Apr 30, 2024
IBM QRadar Suite Products 1.10.12.0 through 1.10.18.0 and IBM Cloud Pak for Security 1.10.0.0... Moderate Unreviewed
CVE-2023-47742 was published Mar 3, 2024
The Object Request Broker (ORB) in IBM SDK, Java Technology Edition 7.1.0.0 through 7.1.5.18 and... Moderate Unreviewed
CVE-2024-27267 was published Aug 14, 2024
BIG-IP Next Central Manager (CM) may allow an unauthenticated, remote attacker to obtain the BIG... High Unreviewed
CVE-2024-32049 was published May 8, 2024
curl 7.63.0 to and including 7.75.0 includes vulnerability that allows a malicious HTTPS proxy to... Moderate Unreviewed
CVE-2021-22890 was published May 24, 2022
An authentication bypass vulnerability exists in the CiRpcServerThread() functionality of... High Unreviewed
CVE-2023-32634 was published Oct 12, 2023
Man in the Middle vulnerability, which could allow an attacker to intercept VNF (Virtual Network... Moderate Unreviewed
CVE-2023-4885 was published Oct 3, 2023
Channel Accessible by Non-Endpoint vulnerability in CBOT Chatbot allows Adversary in the Middle ... High Unreviewed
CVE-2023-2885 was published May 25, 2023
A Channel Accessible by Non-Endpoint vulnerability in the Schweitzer Engineering Laboratories SEL... Moderate Unreviewed
CVE-2023-2310 was published May 10, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database