GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,410
Composer 4,676
Erlang 34
GitHub Actions 26
Go 2,263
Maven 5,528
npm 3,915
NuGet 705
pip 3,686
Pub 12
RubyGems 916
Rust 943
Swift 38

Unreviewed advisories

All unreviewed 253,530

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

312 advisories

Filter by severity

Sort by

Least recently updated

BYD QIN PLUS DM-i Dilink OS v3.0_13.1.7.2204050.1 to v3.0_13.1.7.2312290.1_0 was discovered to... High Unreviewed

CVE-2025-28169 was published Apr 23, 2025

Flash Seats Mobile App for Android version 1.7.9 and earlier and for iOS version 1.9.51 and... High Unreviewed

CVE-2017-3190 was published May 13, 2022

Pandora iOS app prior to version 8.3.2 fails to properly validate SSL certificates provided by... High Unreviewed

CVE-2017-3194 was published May 13, 2022

libvirt version 2.3.0 and later is vulnerable to a bad default configuration of "verify-peer=no"... High Unreviewed

CVE-2017-1000256 was published May 13, 2022

Akeo Consulting Rufus prior to version 2.17.1187 does not adequately validate the integrity of... High Unreviewed

CVE-2017-13083 was published May 13, 2022

On Darwin, user's trust preferences for root certificates were not honored. If the user had a... High Unreviewed

CVE-2017-1000097 was published May 14, 2022

iSmartAlarm cube devices have an SSL Certificate Validation Vulnerability. High Unreviewed

CVE-2017-7726 was published May 13, 2022

Samsung Magician 5.0 fails to validate TLS certificates for HTTPS software update traffic. Prior... High Unreviewed

CVE-2017-3218 was published May 13, 2022

Acceptance of invalid/self-signed TLS certificates in "Foxit PDF - PDF reader, editor, form,... High Unreviewed

CVE-2017-8059 was published May 17, 2022

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core)... High Unreviewed

CVE-2017-3563 was published May 13, 2022

Akerun - Smart Lock Robot App for iOS before 1.2.4 does not verify SSL certificates. High Unreviewed

CVE-2016-1148 was published May 13, 2022

An exploitable free of a stack pointer vulnerability exists in the x509 certificate parsing code... High Unreviewed

CVE-2017-2784 was published May 13, 2022

When a TLS Certificate error occurs on a domain protected by the HSTS header, the browser should... High Unreviewed

CVE-2022-34469 was published Dec 22, 2022

The TLS protocol 1.2 and earlier supports the rsa_fixed_dh, dss_fixed_dh, rsa_fixed_ecdh, and... High Unreviewed

CVE-2015-8960 was published May 14, 2022

Information disclosure due to an insecure hostname validation in the RYDE application 5.8.43 for... High Unreviewed

CVE-2022-42979 was published Jan 6, 2023

Selfwealth iOS mobile App 3.3.1 is vulnerable to Insecure App Transport Security (ATS) Settings. High Unreviewed

CVE-2023-23131 was published Feb 1, 2023

An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a ... High Unreviewed

CVE-2024-45234 was published Aug 25, 2024

Improper certificate validation vulnerability in the LDAP utilities in Synology DiskStation... High Unreviewed

CVE-2024-10444 was published Mar 19, 2025

This vulnerability allows network-adjacent attackers to compromise the integrity of downloaded... High Unreviewed

CVE-2024-23928 was published Jan 31, 2025

When AdaCore Ada Web Server 25.0.0 is linked with GnuTLS, the default behaviour of AWS.Client is... High Unreviewed

CVE-2024-55581 was published Feb 27, 2025

Improper Certificate Validation (CWE-295) in the Gallagher Milestone Integration Plugin (MIP)... High Unreviewed

CVE-2024-43107 was published Mar 10, 2025

Improper Certificate Validation (CWE-295) in the Gallagher Command Centre SALTO integration... High Unreviewed

CVE-2024-41724 was published Mar 10, 2025

An improper certificate validation vulnerability has been reported to affect Helpdesk. If... High Unreviewed

CVE-2024-50394 was published Mar 7, 2025

SunGrow iSolarCloud Android app V2.1.6.20241104 and prior suffers from Missing SSL Certificate... High Unreviewed

CVE-2024-50691 was published Feb 26, 2025

Under certain configurations of --tlsCAFile and tls.CAFile, MongoDB Server may skip peer... High Unreviewed

CVE-2024-1351 was published Mar 7, 2024

Previous 1 2 3 4 5 … 12 13 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

312 advisories