GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,339
Composer 4,133
Erlang 29
GitHub Actions 19
Go 1,940
Maven 5,135
npm 3,677
NuGet 645
pip 3,295
Pub 11
RubyGems 877
Rust 830
Swift 35

Unreviewed advisories

All unreviewed 230,809

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

756 advisories

Filter by severity

Sort by

Least recently updated

Dell Secure Connect Gateway (SCG) 5.0 Appliance - SRS, version(s) 5.24, contains an Improper... Moderate Unreviewed

CVE-2024-47241 was published Oct 18, 2024

A vulnerability has been identified in Bitdefender Total Security HTTPS scanning functionality... High Unreviewed

CVE-2023-49570 was published Oct 18, 2024

A vulnerability has been identified in Bitdefender Total Security HTTPS scanning functionality... High Unreviewed

CVE-2023-6055 was published Oct 18, 2024

A vulnerability has been identified in the Bitdefender Total Security HTTPS scanning... High Unreviewed

CVE-2023-49567 was published Oct 18, 2024

A vulnerability has been discovered in Bitdefender Total Security HTTPS scanning functionality... High Unreviewed

CVE-2023-6056 was published Oct 18, 2024

A vulnerability has been identified in Bitdefender Safepay's handling of HTTPS connections. The... High Unreviewed

CVE-2023-6058 was published Oct 18, 2024

A vulnerability has been discovered in Bitdefender Total Security HTTPS scanning functionality... High Unreviewed

CVE-2023-6057 was published Oct 18, 2024

Windows Secure Channel Spoofing Vulnerability High Unreviewed

CVE-2024-43550 was published Oct 8, 2024

SSL Pinning Bypass in eWeLink Some hardware products allows local ATTACKER to Decrypt TLS... High Unreviewed

CVE-2024-7206 was published Oct 8, 2024

A vulnerability in the SSL/TLS implementation of Cisco Nexus Dashboard Orchestrator (NDO) could... Moderate Unreviewed

CVE-2024-20385 was published Oct 2, 2024

In versions of the PEADM Forge Module prior to 3.24.0 a security misconfiguration was discovered. Moderate Unreviewed

CVE-2024-9160 was published Sep 27, 2024

Improper Certificate Validation in Checkmk Exchange plugin MikroTik allows attackers in MitM... Moderate Unreviewed

CVE-2024-38861 was published Sep 27, 2024

The HCL Traveler for Microsoft Outlook executable (HTMO.exe) is being flagged as potentially... Moderate Unreviewed

CVE-2024-30134 was published Sep 26, 2024

IBM Storage Defender 2.0.0 through 2.0.7 on-prem defender-sensor-cmd CLI does not validate server... Moderate Unreviewed

CVE-2024-38324 was published Sep 25, 2024

The Planet Fitness Workouts iOS and Android mobile apps prior to version 9.8.12 (released on 2024... High Unreviewed

CVE-2024-43201 was published Sep 23, 2024

Anbox Management Service, in versions 1.17.0 through 1.23.0, does not validate the TLS... High Unreviewed

CVE-2024-8287 was published Sep 18, 2024

When curl is told to use the Certificate Status Request TLS extension, often referred to as OCSP... Moderate Unreviewed

CVE-2024-8096 was published Sep 11, 2024

AAn improper certificate validation vulnerability [CWE-295] in FortiClientWindows 7.2.0 through 7... Moderate Unreviewed

CVE-2024-31489 was published Sep 10, 2024

An improper certificate validation vulnerability [CWE-295] in FortiClientWindows 6.4 all versions... Moderate Unreviewed

CVE-2022-45856 was published Sep 10, 2024

An improper certificate validation vulnerability in TLS certificate validation allows an attacker... High Unreviewed

CVE-2024-40714 was published Sep 7, 2024

An improper certificate validation vulnerability has been reported to affect QuMagie. If... Low Unreviewed

CVE-2024-38642 was published Sep 6, 2024

An issue was discovered in Mbed TLS 3.x before 3.6.1. With TLS 1.3, when a server enables... Critical Unreviewed

CVE-2024-45159 was published Sep 5, 2024

QBiC CLOUD CC-2L v1.1.30 and earlier and Safie One v1.8.2 and earlier do not properly validate... Moderate Unreviewed

CVE-2024-39771 was published Aug 28, 2024

Validating the order of the public keys in the Diffie-Hellman Key Agreement Protocol, when an... High Unreviewed

CVE-2024-41996 was published Aug 26, 2024

A flaw was found in the Red Hat OpenStack Platform (RHOSP) director. This vulnerability allows an... High Unreviewed

CVE-2024-8007 was published Aug 21, 2024

Previous 1 2 3 4 5 … 30 31 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

756 advisories