GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,369
Composer 4,373
Erlang 33
GitHub Actions 22
Go 2,135
Maven 5,313
npm 3,797
NuGet 687
pip 3,478
Pub 12
RubyGems 896
Rust 897
Swift 38

Unreviewed advisories

All unreviewed 245,364

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

394 advisories

Filter by severity

Sort by

Least recently updated

IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 Rich Client uses... Moderate Unreviewed

CVE-2024-28780 was published Feb 19, 2025

Rocket Software UniData versions prior to 8.2.4 build 3003 and UniVerse versions prior to 11.3.5... High Unreviewed

CVE-2023-28509 was published Mar 29, 2023

Brocade SANnav before SANnav 2.3.1b enables weak TLS ciphers on ports 443 and 18082. In case of... Moderate Unreviewed

CVE-2024-10405 was published Feb 15, 2025

Brocade SANnav OVA before SANnav 2.3.1b enables SHA1 deprecated setting for SSH for port 22. High Unreviewed

CVE-2024-4282 was published Feb 15, 2025

An issue in Smartcom Bulgaria AD Smartcom Ralink CPE/WiFi router SAM-4G1G-TT-W-VC, SAM-4F1F-TT-W... High Unreviewed

CVE-2025-22936 was published Feb 6, 2025

An issue was discovered in AudioCodes Mediant Session Border Controller (SBC) before 7.40A.501... High Unreviewed

CVE-2024-52884 was published Feb 7, 2025

Dell PowerProtect DD, versions prior to DDOS 8.3.0.0, 7.10.1.50, and 7.13.1.10 contains a use of... Low Unreviewed

CVE-2025-22475 was published Feb 4, 2025

IBM ApplinX 11.1 could allow a remote attacker to obtain sensitive information, caused by the... Moderate Unreviewed

CVE-2024-49797 was published Feb 6, 2025

Brocade SANnav before Brocade SANnav 2.2.2 supports key exchange algorithms, which are considered... High Unreviewed

CVE-2022-43934 was published Feb 4, 2025

Dell Key Trust Platform, v3.0.6 and prior, contains Use of a Cryptographic Primitive with a Risky... Moderate Unreviewed

CVE-2024-37137 was published Feb 3, 2025

In illumos illumos-gate 2024-02-15, an error occurs in the elliptic curve point addition... Moderate Unreviewed

CVE-2024-26317 was published Jan 27, 2025

Due to reliance on a trivial substitution cipher, sent in cleartext, and the reliance on a... Critical Unreviewed

CVE-2022-3365 was published Jan 28, 2025

HHVM 4.172.0 and all prior versions use TLS 1.0 for secure connections when handling tls:// URLs... Critical Unreviewed

CVE-2022-36937 was published May 10, 2023

IBM MQ Container 3.0.0, 3.0.1, 3.1.0 through 3.1.3 CD, 2.0.0 LTS through 2.0.22 LTS and 2.4.0... Moderate Unreviewed

CVE-2024-27256 was published Jan 27, 2025

IBM Storage Protect for Virtual Environments: Data Protection for VMware and Storage Protect... Moderate Unreviewed

CVE-2024-38320 was published Jan 27, 2025

IBM DevOps Velocity 5.0.0 and IBM UrbanCode Velocity 4.0.0 through 4.0. 25 uses weaker than... Moderate Unreviewed

CVE-2024-22347 was published Jan 20, 2025

A “Use of a Broken or Risky Cryptographic Algorithm” vulnerability in the SSL/TLS component used... High Unreviewed

CVE-2024-8603 was published Jan 15, 2025

Affected devices use a weak encryption scheme to encrypt the debug zip file. This could allow an... Moderate Unreviewed

CVE-2022-46140 was published Dec 13, 2022

IBM Concert Software 1.0.0, 1.0.1, 1.0.2, 1.0.2.1, and 1.0.3 could allow a remote attacker to... Moderate Unreviewed

CVE-2024-52366 was published Jan 7, 2025

IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 uses weaker than expected... Moderate Unreviewed

CVE-2024-41763 was published Jan 4, 2025

Smadar SPS – CWE-327: Use of a Broken or Risky Cryptographic Algorithm High Unreviewed

CVE-2024-47921 was published Dec 30, 2024

Weak algorithm used to sign RPM package. The following products are affected: Acronis Cyber... Low Unreviewed

CVE-2024-55539 was published Dec 23, 2024

Dell RecoverPoint for VMs, version(s) 6.0.x contain(s) a Use of a Broken or Risky Cryptographic... Moderate Unreviewed

CVE-2024-28980 was published Dec 13, 2024

IBM Aspera Faspex 5.0.0 through 5.0.7 could allow a local user to obtain sensitive information... Low Unreviewed

CVE-2023-37395 was published Dec 11, 2024

IBM Cognos Controller 11.0.0 and 11.0.1 uses weaker than expected cryptographic algorithms that... Moderate Unreviewed

CVE-2024-41775 was published Dec 3, 2024

Previous 1 2 3 4 5 … 15 16 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

394 advisories