GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,295
Maven
5,000+
npm
5,000+
NuGet
1,029
pip
5,000+
Pub
13
RubyGems
1,107
Rust
1,492
Swift
61
Unreviewed advisories
All unreviewed
5,000+
228 advisories
Filter by severity
A vulnerability has been identified in Opcenter Quality (All versions < V12.2), QMS Automotive ...
Critical
Unreviewed
CVE-2021-27389
was published
May 24, 2022
A vulnerability has been identified in SCALANCE X-300 switch family (incl. X408 and SIPLUS NET...
Moderate
Unreviewed
CVE-2020-28395
was published
May 24, 2022
A vulnerability has been identified in SCALANCE X-200 switch family (incl. SIPLUS NET variants) ...
Moderate
Unreviewed
CVE-2020-28391
was published
May 24, 2022
A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3),...
Moderate
Unreviewed
CVE-2020-25231
was published
May 24, 2022
A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3),...
High
Unreviewed
CVE-2020-25234
was published
May 24, 2022
A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3)....
High
Unreviewed
CVE-2020-25229
was published
May 24, 2022
A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3)....
Moderate
Unreviewed
CVE-2020-25233
was published
May 24, 2022
Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and prior, Series A, all...
High
Unreviewed
CVE-2020-6990
was published
May 24, 2022
minerstat msOS before 2019-10-23 does not have a unique SSH key for each instance of the product.
Critical
Unreviewed
CVE-2019-19750
was published
May 24, 2022
Red Lion Controls Crimson, version 3.0 and prior and version 3.1 prior to release 3112.00, uses a...
Moderate
Unreviewed
CVE-2019-10990
was published
May 24, 2022
Metasys? ADS/ADX servers and NAE/NIE/NCE engines prior to 9.0 make use of a hardcoded RC2 key for...
Critical
Unreviewed
CVE-2019-7594
was published
May 24, 2022
A vulnerability has been identified in LOGO!8 BM (All versions). Project data stored on the...
High
Unreviewed
CVE-2019-10920
was published
May 24, 2022
GE Multilink ML800, ML1200, ML1600, and ML2400 switches with firmware 4.2.1 and earlier and...
Moderate
Unreviewed
CVE-2014-5419
was published
May 17, 2022
Hospira MedNet before 6.1 uses hardcoded cryptographic keys for protection of data transmission...
Moderate
Unreviewed
CVE-2014-5403
was published
May 17, 2022
Improper Access Control in Apache Shiro
Critical
CVE-2016-4437
was published
for
org.apache.shiro:shiro-core
(Maven)
May 14, 2022
Use of Hard-coded Cryptographic Key in Apache Tomcat
Moderate
CVE-2011-5064
was published
for
org.apache.tomcat:tomcat
(Maven)
May 14, 2022
A Use of Hard-coded Cryptographic Key issue was discovered in Korenix JetNet JetNet5018G version...
Critical
Unreviewed
CVE-2017-14021
was published
May 13, 2022
A Use of Hard-Coded Cryptographic Key issue was discovered in Hyundai Motor America Blue Link 3.9...
High
Unreviewed
CVE-2017-6054
was published
May 13, 2022
A Use of Hard-Coded Cryptographic Key issue was discovered in Mirion Technologies DMC 3000...
Moderate
Unreviewed
CVE-2017-9649
was published
May 13, 2022
The default cloud-init configuration, in cloud-init 0.6.2 and newer, included "ssh_deletekeys: 0"...
High
Unreviewed
CVE-2018-10896
was published
May 13, 2022
Schneider Electric SoMachine Basic 1.4 SP1 and Schneider Electric Modicon TM221CE16R 1.3.3.3...
Critical
Unreviewed
CVE-2017-7574
was published
May 13, 2022
An information disclosure vulnerability exists in the router configuration export functionality...
Moderate
Unreviewed
CVE-2022-26020
was published
May 13, 2022
A vulnerability in the key-based SSH authentication mechanism of Cisco Umbrella Virtual Appliance...
High
Unreviewed
CVE-2022-20773
was published
Apr 22, 2022
Use of Hard-coded Cryptographic Key in Netmaker
High
CVE-2022-23650
was published
for
github.com/gravitl/netmaker
(Go)
Feb 22, 2022
Use of Hard-coded Cryptographic Key in Netmaker
High
CVE-2022-0664
was published
for
github.com/gravitl/netmaker
(Go)
Feb 19, 2022
ProTip!
Advisories are also available from the
GraphQL API