GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
459 advisories
Filter by severity
HCL DRYiCE MyXalytics is impacted by the use of a broken cryptographic algorithm for encryption,...
High
Unreviewed
CVE-2023-50350
was published
Jan 3, 2024
Sympa before 6.2.62 relies on a cookie parameter for certain security objectives, but does not...
High
Unreviewed
CVE-2021-46900
was published
Dec 31, 2023
A weak cryptographic algorithm vulnerability has been identified in ioLogik E1200 Series firmware...
Moderate
Unreviewed
CVE-2023-5962
was published
Dec 23, 2023
Dell NetWorker Virtual Edition versions 19.8 and below contain the use of deprecated...
Moderate
Unreviewed
CVE-2023-28053
was published
Dec 22, 2023
bsock uses weak hashing algorithms
Critical
CVE-2023-50475
was published
for
bsock
(npm)
Dec 21, 2023
IBM Spectrum Scale 5.1.5.0 through 5.1.5.1 uses weaker than expected cryptographic algorithms...
Moderate
Unreviewed
CVE-2022-43843
was published
Dec 14, 2023
Brocade Fabric OS (FOS) hardware
platforms running any version of Brocade Fabric OS software,...
Moderate
Unreviewed
CVE-2021-27795
was published
Dec 6, 2023
The TETRA TA61 identity encryption function internally uses a 64-bit value derived exclusively...
Moderate
Unreviewed
CVE-2022-24403
was published
Dec 5, 2023
IBM Planning Analytics on Cloud Pak for Data 4.0 could allow an attacker on a shared network to...
Moderate
Unreviewed
CVE-2023-26024
was published
Dec 1, 2023
IBM CICS TX Advanced 10.1 uses weaker than expected cryptographic algorithms that could allow an...
Moderate
Unreviewed
CVE-2023-38361
was published
Nov 18, 2023
A flaw was found in OpenSC packages that allow a potential PIN bypass. When a token/card is...
Moderate
Unreviewed
CVE-2023-40660
was published
Nov 6, 2023
crypto-js PBKDF2 1,000 times weaker than specified in 1993 and 1.3M times weaker than current standard
Critical
CVE-2023-46233
was published
for
crypto-js
(npm)
Oct 25, 2023
crypto-es PBKDF2 1,000 times weaker than specified in 1993 and 1.3M times weaker than current standard
Critical
CVE-2023-46133
was published
for
crypto-es
(npm)
Oct 25, 2023
jose4j uses weak cryptographic algorithm
High
CVE-2023-31582
was published
for
org.bitbucket.b_c:jose4j
(Maven)
Oct 25, 2023
free5GC udm vulnerable to Invalid Curve Attack
High
CVE-2023-46324
was published
for
github.com/free5gc/udm
(Go)
Oct 23, 2023
IBM QRadar SIEM 7.5.0 uses weaker than expected cryptographic algorithms that could allow an...
High
Unreviewed
CVE-2023-30994
was published
Oct 14, 2023
IBM Security Directory Suite 8.0.1 uses weaker than expected cryptographic algorithms that could...
High
Unreviewed
CVE-2022-33160
was published
Oct 7, 2023
A Cryptographic Issue vulnerability has been found on IBERMATICA RPS, affecting version 2019. By...
High
Unreviewed
CVE-2023-3350
was published
Oct 3, 2023
Dell SCG Policy Manager 5.16.00.14 contains a broken cryptographic algorithm vulnerability. A...
Moderate
Unreviewed
CVE-2023-39252
was published
Sep 21, 2023
Vault Key Sealed With SHA1 PCRs
The measured boot solution implemented in EVE OS leans on...
High
Unreviewed
CVE-2023-43635
was published
Sep 20, 2023
Aria Operations for Networks contains an Authentication Bypass vulnerability due to a lack of...
Critical
Unreviewed
CVE-2023-34039
was published
Aug 29, 2023
IBM Storage Copy Data Management 2.2.0.0 through 2.2.19.0 uses weaker than expected cryptographic...
High
Unreviewed
CVE-2023-38730
was published
Aug 28, 2023
IBM AIX 7.2, 7.3, VIOS 3.1's OpenSSH implementation could allow a non-privileged local user to...
Moderate
Unreviewed
CVE-2023-40371
was published
Aug 24, 2023
Broadcom RAID Controller web interface is vulnerable has an insecure default TLS configuration...
High
Unreviewed
CVE-2023-4331
was published
Aug 15, 2023
Broadcom RAID Controller web interface is vulnerable to exposure of sensitive data and the keys...
Moderate
Unreviewed
CVE-2023-4327
was published
Aug 15, 2023
ProTip!
Advisories are also available from the
GraphQL API