GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,324
Composer 4,360
Erlang 33
GitHub Actions 22
Go 2,127
Maven 5,308
npm 3,793
NuGet 683
pip 3,471
Pub 12
RubyGems 894
Rust 894
Swift 38

Unreviewed advisories

All unreviewed 244,890

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,206 advisories

Filter by severity

Sort by

Least recently updated

The ifmap service that comes bundled with Juniper Networks Contrail releases uses hard coded... Moderate Unreviewed

CVE-2017-10616 was published May 13, 2022

Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, uses hard... High Unreviewed

CVE-2016-9495 was published May 13, 2022

A Hard-Coded Passwords issue was discovered in Marel Food Processing Systems M3000 terminal... Critical Unreviewed

CVE-2016-9358 was published May 13, 2022

A hard-coded cryptographic key vulnerability was identified in Red Lion Controls Sixnet-Managed... Critical Unreviewed

CVE-2016-9335 was published May 13, 2022

Hard-coded accounts may be used to access Hospira Plum A+ Infusion System version 13.4 and prior,... Critical Unreviewed

CVE-2015-3953 was published May 13, 2022

Baxter SIGMA Spectrum Infusion System version 6.05 (model 35700BAX) with wireless battery module ... Critical Unreviewed

CVE-2014-5434 was published May 13, 2022

Baxter SIGMA Spectrum Infusion System version 6.05 (model 35700BAX) with wireless battery module ... Moderate Unreviewed

CVE-2014-5431 was published May 13, 2022

In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the... High Unreviewed

CVE-2017-11026 was published May 13, 2022

An issue was discovered on Wireless IP Camera 360 devices. A root account with a known SHA-512... Critical Unreviewed

CVE-2017-11632 was published May 13, 2022

The Epson "EasyMP" software is designed to remotely stream a users computer to supporting... Critical Unreviewed

CVE-2017-12860 was published May 13, 2022

D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware... High Unreviewed

CVE-2017-14426 was published May 13, 2022

D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware... High Unreviewed

CVE-2017-14428 was published May 13, 2022

In net.MCrypt in the "Diary with lock" (aka WriteDiary) application 4.72 for Android, hardcoded... High Unreviewed

CVE-2017-15582 was published May 13, 2022

FusionSphere OpenStack V100R006C00 has an information exposure vulnerability. The software uses... Moderate Unreviewed

CVE-2017-2720 was published May 13, 2022

EMC ESRS Policy Manager prior to 6.8 contains an undocumented account (OpenDS admin) with a... Critical Unreviewed

CVE-2017-4976 was published May 13, 2022

The Data Warehouse component in NetApp OnCommand Insight before 7.2.3 allows remote attackers to... Critical Unreviewed

CVE-2017-5600 was published May 13, 2022

On the TP-Link TL-SG108E 1.0, there is a hard-coded ciphering key (a long string beginning with... High Unreviewed

CVE-2017-8077 was published May 13, 2022

** DISPUTED ** An Incorrect Password Management issue was discovered in SMA Solar Technology... Critical Unreviewed

CVE-2017-9852 was published May 13, 2022

ASUSTOR ADM 3.1.0.RFQ3 uses the same default root:admin username and password as it does for the... Critical Unreviewed

CVE-2018-11509 was published May 13, 2022

The EPSON iPrint application 6.6.3 for Android contains hard-coded API and Secret keys for the... High Unreviewed

CVE-2018-14901 was published May 13, 2022

An attacker without authentication can login with default credentials for privileged users in... High Unreviewed

CVE-2018-15360 was published May 13, 2022

A vulnerability in the permission and encryption implementation of Zemana Anti-Logger 1.9.3.527... High Unreviewed

CVE-2018-15491 was published May 13, 2022

Amcrest networked devices use the same hardcoded SSL private key across different customers'... Moderate Unreviewed

CVE-2018-16546 was published May 13, 2022

MASTER IPCAMERA01 3.3.4.2103 devices allow Unauthenticated Configuration Change, as demonstrated... High Unreviewed

CVE-2018-5725 was published May 13, 2022

An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x before 5.8.6.9 and 5.9.x... High Unreviewed

CVE-2018-5797 was published May 13, 2022

Previous 1 2 … 7 8 9 10 11 … 48 49 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,206 advisories