GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,233
Erlang
31
GitHub Actions
20
Go
1,992
Maven
5,000+
npm
3,709
NuGet
661
pip
3,346
Pub
11
RubyGems
884
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+
24 advisories
Filter by severity
The DVC from TRCore encrypts files using a hardcoded key. Attackers can use this key to decrypt...
Moderate
Unreviewed
CVE-2024-11308
was published
Nov 18, 2024
A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 3). The affected...
Moderate
Unreviewed
CVE-2024-46889
was published
Nov 12, 2024
IBM Maximo Application Suite - Monitor Component 8.10, 8.11, and 9.0 could disclose information...
Moderate
Unreviewed
CVE-2024-38314
was published
Oct 24, 2024
A vulnerability in the backup feature of Cisco UCS Central Software could allow an attacker with...
Moderate
Unreviewed
CVE-2024-20280
was published
Oct 16, 2024
A hard-coded AES key vulnerability was reported in the Motorola GuideMe application, along with...
Moderate
Unreviewed
CVE-2024-3109
was published
May 3, 2024
Softing Secure Integration Server Hardcoded Cryptographic Key Information Disclosure...
Moderate
Unreviewed
CVE-2023-39482
was published
May 3, 2024
HiveOS through 0.6-102@191212 ships with SSH host keys baked into the installation image, which...
Moderate
Unreviewed
CVE-2019-19754
was published
Apr 30, 2024
Use of Hard-coded Cryptographic Key vulnerability in OpenText™ Exceed Turbo X affecting versions...
Moderate
Unreviewed
CVE-2023-38535
was published
Mar 14, 2024
A vulnerability, which was classified as critical, has been found in osuuu LightPicture up to 1.2...
Moderate
Unreviewed
CVE-2024-1920
was published
Feb 27, 2024
Use of encryption key derived from static information in Synaptics Fingerprint Driver allows
an...
Moderate
Unreviewed
CVE-2023-6482
was published
Jan 27, 2024
A vulnerability has been identified in SCALANCE XB205-3 (SC, PN) (All versions < V4.5), SCALANCE...
Moderate
Unreviewed
CVE-2023-44318
was published
Nov 14, 2023
A vulnerability has been identified in MXsecurity versions prior to v1.0.1. The vulnerability may...
Moderate
Unreviewed
CVE-2023-39982
was published
Sep 2, 2023
The ProfileGrid plugin for WordPress is vulnerable to unauthorized decryption of private...
Moderate
Unreviewed
CVE-2023-3404
was published
Aug 31, 2023
Broadcom RAID Controller web interface is vulnerable to exposure of sensitive data and the keys...
Moderate
Unreviewed
CVE-2023-4328
was published
Aug 15, 2023
The Video Conferencing with Zoom plugin for WordPress is vulnerable to Sensitive Information...
Moderate
Unreviewed
CVE-2023-3947
was published
Jul 26, 2023
Iagona ScrutisWeb versions 2.1.37 and prior are vulnerable to a cryptographic vulnerability that...
Moderate
Unreviewed
CVE-2023-35763
was published
Jul 18, 2023
AXIS OS 11.0.X - 11.3.x use a static RSA key in legacy LUA-components to protect Axis-specific...
Moderate
Unreviewed
CVE-2023-21404
was published
May 8, 2023
A vulnerability has been identified in SCALANCE X-300 switch family (incl. X408 and SIPLUS NET...
Moderate
Unreviewed
CVE-2020-28395
was published
May 24, 2022
A vulnerability has been identified in SCALANCE X-200 switch family (incl. SIPLUS NET variants) ...
Moderate
Unreviewed
CVE-2020-28391
was published
May 24, 2022
A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3),...
Moderate
Unreviewed
CVE-2020-25231
was published
May 24, 2022
A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3)....
Moderate
Unreviewed
CVE-2020-25233
was published
May 24, 2022
Use of Hard-coded Cryptographic Key in Apache Tomcat
Moderate
CVE-2011-5064
was published
for
org.apache.tomcat:tomcat
(Maven)
May 14, 2022
An information disclosure vulnerability exists in the router configuration export functionality...
Moderate
Unreviewed
CVE-2022-26020
was published
May 13, 2022
The use of a hard-coded cryptographic key significantly increases the possibility encrypted data...
Moderate
Unreviewed
CVE-2021-43552
was published
Dec 28, 2021
ProTip!
Advisories are also available from the
GraphQL API