GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,213
Composer 4,344
Erlang 31
GitHub Actions 22
Go 2,111
Maven 5,287
npm 3,767
NuGet 680
pip 3,453
Pub 12
RubyGems 892
Rust 888
Swift 37

Unreviewed advisories

All unreviewed 243,528

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

387 advisories

Filter by severity

Sort by

Least recently updated

IBM WebSphere Application Server Liberty 17.0.0.3 through 24.0.0.2 could provide weaker than... Moderate Unreviewed

CVE-2023-50312 was published Mar 1, 2024

Ember ZNet between v7.2.0 and v7.4.0 used software AES-CCM instead of integrated hardware... Moderate Unreviewed

CVE-2023-51392 was published Feb 23, 2024

IBM CICS TX Standard and Advanced 11.1 uses weaker than expected cryptographic algorithms that... Moderate Unreviewed

CVE-2022-34309 was published Feb 12, 2024

IBM CICS TX Standard and Advanced 11.1 uses weaker than expected cryptographic algorithms that... Moderate Unreviewed

CVE-2022-34310 was published Feb 12, 2024

IBM Semeru Runtime 8.0.302.0 through 8.0.392.0, 11.0.12.0 through 11.0.21.0, 17.0.1.0 - 17.0.9.0,... Moderate Unreviewed

CVE-2024-22361 was published Feb 10, 2024

IBM i Access Client Solutions (ACS) 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.4 is vulnerable... Moderate Unreviewed

CVE-2024-22318 was published Feb 9, 2024

Use of a Broken or Risky Cryptographic Algorithm vulnerability in B&R Industrial Automation... Critical Unreviewed

CVE-2024-0323 was published Feb 5, 2024

A Marvin vulnerability side-channel leakage was found in the RSA decryption operation in the... Moderate Unreviewed

CVE-2023-6240 was published Feb 4, 2024

IBM PowerSC 1.3, 2.0, and 2.1 uses weaker than expected cryptographic algorithms that could allow... Moderate Unreviewed

CVE-2023-50937 was published Feb 2, 2024

IBM PowerSC 1.3, 2.0, and 2.1 uses weaker than expected cryptographic algorithms that could allow... Moderate Unreviewed

CVE-2023-50939 was published Feb 2, 2024

Gessler GmbH WEB-MASTER user account is stored using a weak hashing algorithm. The attacker... Moderate Unreviewed

CVE-2024-1040 was published Feb 2, 2024

The authentication cookies are generated using an algorithm based on the username, hardcoded... High Unreviewed

CVE-2023-49259 was published Jan 12, 2024

HCL DRYiCE MyXalytics is impacted by the use of a broken cryptographic algorithm for encryption,... High Unreviewed

CVE-2023-50350 was published Jan 3, 2024

Sympa before 6.2.62 relies on a cookie parameter for certain security objectives, but does not... High Unreviewed

CVE-2021-46900 was published Dec 31, 2023

A weak cryptographic algorithm vulnerability has been identified in ioLogik E1200 Series firmware... Moderate Unreviewed

CVE-2023-5962 was published Dec 23, 2023

Dell NetWorker Virtual Edition versions 19.8 and below contain the use of deprecated... Moderate Unreviewed

CVE-2023-28053 was published Dec 22, 2023

IBM Spectrum Scale 5.1.5.0 through 5.1.5.1 uses weaker than expected cryptographic algorithms... Moderate Unreviewed

CVE-2022-43843 was published Dec 14, 2023

Brocade Fabric OS (FOS) hardware platforms running any version of Brocade Fabric OS software,... Moderate Unreviewed

CVE-2021-27795 was published Dec 6, 2023

The TETRA TA61 identity encryption function internally uses a 64-bit value derived exclusively... Moderate Unreviewed

CVE-2022-24403 was published Dec 5, 2023

IBM Planning Analytics on Cloud Pak for Data 4.0 could allow an attacker on a shared network to... Moderate Unreviewed

CVE-2023-26024 was published Dec 1, 2023

IBM CICS TX Advanced 10.1 uses weaker than expected cryptographic algorithms that could allow an... Moderate Unreviewed

CVE-2023-38361 was published Nov 18, 2023

A flaw was found in OpenSC packages that allow a potential PIN bypass. When a token/card is... Moderate Unreviewed

CVE-2023-40660 was published Nov 6, 2023

IBM QRadar SIEM 7.5.0 uses weaker than expected cryptographic algorithms that could allow an... High Unreviewed

CVE-2023-30994 was published Oct 14, 2023

IBM Security Directory Suite 8.0.1 uses weaker than expected cryptographic algorithms that could... High Unreviewed

CVE-2022-33160 was published Oct 7, 2023

A Cryptographic Issue vulnerability has been found on IBERMATICA RPS, affecting version 2019. By... High Unreviewed

CVE-2023-3350 was published Oct 3, 2023

Previous 1 2 3 4 5 … 15 16 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

387 advisories