Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

401 advisories

Loading
IBM Sterling Secure Proxy 6.0.3 and IBM Secure External Authentication Server 6.0.3 does not... Moderate Unreviewed
CVE-2021-29726 was published May 18, 2022
The Certificate Trust Policy component in Apple Mac OS X before 10.6.8 does not perform CRL... Moderate Unreviewed
CVE-2011-0199 was published May 17, 2022
The Smart Call Home (SCH) implementation in Cisco ASA Software 8.2 before 8.2(5.50), 8.4 before 8... Moderate Unreviewed
CVE-2014-3394 was published May 17, 2022
The Chase mobile banking application for Android does not verify that the server hostname matches... Moderate Unreviewed
CVE-2012-5810 was published May 17, 2022
The default configuration of Fortinet Fortigate UTM appliances uses the same Certification... Moderate Unreviewed
CVE-2012-4948 was published May 17, 2022
NetApp Plug-in for Symantec NetBackup prior to version 2.0.1 makes use of a non-unique server... Moderate Unreviewed
CVE-2016-7171 was published May 17, 2022
The esets_daemon service in ESET Endpoint Antivirus for macOS before 6.4.168.0 and Endpoint... Moderate Unreviewed
CVE-2016-9892 was published May 17, 2022
There is Missing SSL Certificate Validation in the Trend Micro Enterprise Mobile Security Android... Moderate Unreviewed
CVE-2016-9319 was published May 17, 2022
Google Chrome caches TLS sessions before certificate validation occurs. Moderate Unreviewed
CVE-2013-6662 was published May 17, 2022
Photopt for Android before 2.0.1 does not verify SSL certificates. Moderate Unreviewed
CVE-2016-1198 was published May 17, 2022
DMM Movie Player App for Android before 1.2.1, and DMM Movie Player App for iPhone/iPad before 2... Moderate Unreviewed
CVE-2016-4829 was published May 17, 2022
Kintone mobile for Android 1.0.0 through 1.0.5 does not verify SSL server certificates. Moderate Unreviewed
CVE-2016-1186 was published May 17, 2022
DMMFX Trade for Android 1.5.0 and earlier, DMMFX DEMO Trade for Android 1.5.0 and earlier, and... Moderate Unreviewed
CVE-2016-4818 was published May 17, 2022
WAON "Service Application" for Android 1.4.1 and earlier does not verify SSL certificates. Moderate Unreviewed
CVE-2016-4832 was published May 17, 2022
Jetstar App for iOS before 3.0.0 does not verify X.509 certificates from SSL servers, which... Moderate Unreviewed
CVE-2016-1221 was published May 17, 2022
The 105 BANK app 1.0 and 1.1 for Android and 1.0 for iOS does not verify X.509 certificates from... Moderate Unreviewed
CVE-2016-1210 was published May 17, 2022
The Access CX App for Android prior to 2.0.0.1 and for iOS prior to 2.0.2 does not verify X.509... Moderate Unreviewed
CVE-2017-2110 was published May 17, 2022
Remote Service Manager 3.0.0 to 3.1.4 fails to verify client certificates, which may allow remote... Moderate Unreviewed
CVE-2016-7815 was published May 17, 2022
The Everyday Health Diabetes in Check: Blood Glucose & Carb Tracker app 3.4.2 for iOS does not... Moderate Unreviewed
CVE-2017-5906 was published May 17, 2022
The Think Mutual Bank Mobile Banking app 3.1.5 for iOS does not verify X.509 certificates from... Moderate Unreviewed
CVE-2017-3213 was published May 17, 2022
The State Bank of India State Bank Anywhere app 5.1.0 for iOS does not verify X.509 certificates... Moderate Unreviewed
CVE-2017-5901 was published May 17, 2022
The Great Southern Bank Great Southern Mobile Banking app before 4.0.4 for iOS does not verify X... Moderate Unreviewed
CVE-2017-5907 was published May 17, 2022
Acceptance of invalid/self-signed TLS certificates in Atlassian HipChat before 3.16.2 for iOS... Moderate Unreviewed
CVE-2017-8058 was published May 17, 2022
The Electronic Funds Source (EFS) Mobile Driver Source app 2.5 for iOS does not verify X.509... Moderate Unreviewed
CVE-2017-5909 was published May 17, 2022
The America's First Federal Credit Union (FCU) Mobile Banking app 3.1.0 for iOS does not verify X... Moderate Unreviewed
CVE-2017-5916 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database