Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,303
Erlang
31
GitHub Actions
21
Go
2,072
Maven
5,000+
npm
3,744
NuGet
669
pip
3,430
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

293 advisories

Loading
Improper handling and storage of certificates in CP Plus CP-VNR-3104 B3223P22C02424 allow... High Unreviewed
CVE-2024-54848 was published Jan 10, 2025
Windows Cryptographic Services Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30020 was published May 14, 2024
IBM Cognos Controller 11.0.0 through 11.0.1 and IBM Controller 11.1.0 could allow an unauthorized... High Unreviewed
CVE-2024-40702 was published Jan 7, 2025
Active Directory Domain Services Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-26923 was published May 11, 2022
An improper certificate validation vulnerability was reported in LADM that could allow a network... High Unreviewed
CVE-2024-6001 was published Dec 16, 2024
An improper validation vulnerability was reported in the firmware update mechanism of LADM and... High Unreviewed
CVE-2024-4762 was published Dec 16, 2024
An improper certificate validation vulnerability has been reported to affect several QNAP... High Unreviewed
CVE-2024-48865 was published Dec 6, 2024
An Improper Certificate Validation on the UniFi iOS App managing a standalone UniFi Access Point ... High Unreviewed
CVE-2024-45205 was published Dec 4, 2024
An insufficient certification validation issue in the Palo Alto Networks GlobalProtect app... High Unreviewed
CVE-2024-5921 was published Nov 27, 2024
A flaw was found in the Red Hat OpenStack Platform (RHOSP) director. This vulnerability allows an... High Unreviewed
CVE-2024-8007 was published Aug 21, 2024
NETGEAR RAX30 Improper Certificate Validation Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-51634 was published Nov 22, 2024
A vulnerability in the certificate validation of Cisco Expressway-C and Cisco&nbsp... High Unreviewed
CVE-2022-20814 was published Nov 15, 2024
Windows Certificate Spoofing Vulnerability. High Unreviewed
CVE-2022-21836 was published Jan 12, 2022
qBittorrent before 5.0.1 proceeds with use of https URLs even after certificate validation errors. High Unreviewed
CVE-2024-51774 was published Nov 2, 2024
A vulnerability has been identified in Bitdefender Total Security HTTPS scanning functionality... High Unreviewed
CVE-2023-6055 was published Oct 18, 2024
A vulnerability has been identified in Bitdefender Total Security HTTPS scanning functionality... High Unreviewed
CVE-2023-49570 was published Oct 18, 2024
A vulnerability has been identified in Bitdefender Safepay's handling of HTTPS connections. The... High Unreviewed
CVE-2023-6058 was published Oct 18, 2024
A vulnerability has been discovered in Bitdefender Total Security HTTPS scanning functionality... High Unreviewed
CVE-2023-6056 was published Oct 18, 2024
A vulnerability has been identified in the Bitdefender Total Security HTTPS scanning... High Unreviewed
CVE-2023-49567 was published Oct 18, 2024
A vulnerability has been discovered in Bitdefender Total Security HTTPS scanning functionality... High Unreviewed
CVE-2023-6057 was published Oct 18, 2024
Windows Secure Channel Spoofing Vulnerability High Unreviewed
CVE-2024-43550 was published Oct 8, 2024
SSL Pinning Bypass in eWeLink Some hardware products allows local ATTACKER to Decrypt TLS... High Unreviewed
CVE-2024-7206 was published Oct 8, 2024
DroneScout ds230 Remote ID receiver from BlueMark Innovations is affected by an Improper... High Unreviewed
CVE-2023-31190 was published Jul 11, 2023
The Planet Fitness Workouts iOS and Android mobile apps prior to version 9.8.12 (released on 2024... High Unreviewed
CVE-2024-43201 was published Sep 23, 2024
IBM Security Verify Access Appliance 10.0.0 through 10.0.7 could allow a malicious actor to... High Unreviewed
CVE-2024-31872 was published Apr 10, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database