Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
41
Go
3,005
Maven
5,000+
npm
4,733
NuGet
788
pip
4,343
Pub
12
RubyGems
987
Rust
1,137
Swift
50
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

16 advisories

Loading
Issue summary: When using the low-level OCB API directly with AES-NI or<br>other hardware... Moderate Unreviewed
CVE-2025-69418 was published Jan 27, 2026
Missing cryptographic step in Windows Kerberos allows an unauthorized attacker to elevate... High Unreviewed
CVE-2025-60704 was published Nov 11, 2025
In MbedTLS 3.3.0 before 3.6.4, mbedtls_lms_verify may accept invalid signatures if hash... Moderate Unreviewed
CVE-2025-49600 was published Jul 4, 2025
RLPx 5 has two CTR streams based on the same key, IV, and nonce. This can facilitate decryption... Low Unreviewed
CVE-2015-20112 was published Jun 29, 2025
A vulnerability, which was classified as problematic, has been found in fossasia open-event... Moderate Unreviewed
CVE-2025-5323 was published May 29, 2025
Missing Cryptographic Step vulnerability in Tridium Niagara Framework on Windows, Linux, QNX,... Moderate Unreviewed
CVE-2025-3938 was published May 22, 2025
A vulnerability in pairing process of Cisco&nbsp;TelePresence CE Software and RoomOS Software for... Moderate Unreviewed
CVE-2022-20793 was published Nov 15, 2024
Windows Kerberos Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-43547 was published Oct 8, 2024
Cryptographic issues with In-Meeting Chat for some Zoom clients may allow a privileged user to... Moderate Unreviewed
CVE-2023-39199 was published Nov 15, 2023
AMI SPx contains a vulnerability in the BMC where a user may cause a missing cryptographic step... High Unreviewed
CVE-2023-34471 was published Jul 5, 2023
Certain General Electric Renewable Energy products have inadequate encryption strength. This... Critical Unreviewed
CVE-2022-24116 was published Dec 26, 2022
Using its HSTS support, curl can be instructed to use HTTPS directly insteadof using an insecure... Moderate Unreviewed
CVE-2022-30115 was published Jun 3, 2022
A user can tell curl >= 7.20.0 and <= 7.78.0 to require a successful upgrade to TLS when speaking... High Unreviewed
CVE-2021-22946 was published May 24, 2022
Libgcrypt before 1.8.8 and 1.9.x before 1.9.3 mishandles ElGamal encryption because it lacks... High Unreviewed
CVE-2021-33560 was published May 24, 2022
RSA BSAFE Crypto-J versions prior to 6.2.5 are vulnerable to an Improper Verification of... Moderate Unreviewed
CVE-2019-3738 was published May 24, 2022
A vulnerability in the encryption implementation of EBICS messages in the open source librairy... High Unreviewed
CVE-2022-1279 was published Apr 15, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database