Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,988
Maven
5,000+
npm
3,704
NuGet
661
pip
3,332
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

957 advisories

Loading
The "First State Bank of Bigfork Mobile Banking" by First State Bank of Bigfork app 4.0.3 -- aka... Moderate Unreviewed
CVE-2017-9595 was published May 17, 2022
The "Blue Ridge Bank and Trust Co. Mobile Banking" by Blue Ridge Bank and Trust Co. app 3.0.1 --... Moderate Unreviewed
CVE-2017-9597 was published May 17, 2022
The "Morton Credit Union Mobile Banking" by Morton Credit Union app 3.0.1 -- aka morton-credit... Moderate Unreviewed
CVE-2017-9598 was published May 17, 2022
The 105 BANK app 1.0 and 1.1 for Android and 1.0 for iOS does not verify X.509 certificates from... Moderate Unreviewed
CVE-2016-1210 was published May 17, 2022
The Cybozu kintone mobile for Android 1.0.6 and earlier does not verify X.509 certificates from... Moderate Unreviewed
CVE-2016-7816 was published May 17, 2022
Photopt for Android before 2.0.1 does not verify SSL certificates. Moderate Unreviewed
CVE-2016-1198 was published May 17, 2022
Kintone mobile for Android 1.0.0 through 1.0.5 does not verify SSL server certificates. Moderate Unreviewed
CVE-2016-1186 was published May 17, 2022
A improper validation of certificate with host mismatch in Fortinet FortiTokenAndroid version 5.0... Moderate Unreviewed
CVE-2021-22131 was published Jul 19, 2022
The Zipongo - Healthy Recipes and Grocery Deals app before 6.3 for iOS does not verify X.509... Moderate Unreviewed
CVE-2017-8940 was published May 17, 2022
There is Missing SSL Certificate Validation in the Trend Micro Enterprise Mobile Security Android... Moderate Unreviewed
CVE-2016-9319 was published May 17, 2022
The Think Mutual Bank Mobile Banking app 3.1.5 for iOS does not verify X.509 certificates from... Moderate Unreviewed
CVE-2017-3213 was published May 17, 2022
The America's First Federal Credit Union (FCU) Mobile Banking app 3.1.0 for iOS does not verify X... Moderate Unreviewed
CVE-2017-5916 was published May 17, 2022
The Everyday Health Diabetes in Check: Blood Glucose & Carb Tracker app 3.4.2 for iOS does not... Moderate Unreviewed
CVE-2017-5906 was published May 17, 2022
Acceptance of invalid/self-signed TLS certificates in "Foxit PDF - PDF reader, editor, form,... High Unreviewed
CVE-2017-8059 was published May 17, 2022
WebSocket.swift in Starscream before 2.0.4 allows an SSL Pinning bypass because pinning occurs in... High Unreviewed
CVE-2017-5887 was published May 17, 2022
DMM Movie Player App for Android before 1.2.1, and DMM Movie Player App for iPhone/iPad before 2... Moderate Unreviewed
CVE-2016-4829 was published May 17, 2022
Google Chrome caches TLS sessions before certificate validation occurs. Moderate Unreviewed
CVE-2013-6662 was published May 17, 2022
botan 1.11.x before 1.11.22 improperly handles wildcard matching against hostnames, which might... Critical Unreviewed
CVE-2015-7826 was published May 17, 2022
When connecting to Amazon Workspaces, the SHA256 presented by AWS connection provisioner is not... High Unreviewed
CVE-2022-1805 was published Jul 29, 2022
The esets_daemon service in ESET Endpoint Antivirus for macOS before 6.4.168.0 and Endpoint... Moderate Unreviewed
CVE-2016-9892 was published May 17, 2022
NetApp Plug-in for Symantec NetBackup prior to version 2.0.1 makes use of a non-unique server... Moderate Unreviewed
CVE-2016-7171 was published May 17, 2022
IBM QRadar SIEM 7.3, 7.4, and 7.5 does not preform proper certificate validation for some inter... High Unreviewed
CVE-2021-29755 was published Jul 21, 2022
A vulnerability in the SSL/TLS implementation of Cisco Nexus Dashboard could allow an... High Unreviewed
CVE-2022-20860 was published Jul 22, 2022
The default configuration of Fortinet Fortigate UTM appliances uses the same Certification... Moderate Unreviewed
CVE-2012-4948 was published May 17, 2022
The Sophos Secure Email application through 3.9.4 for Android has Missing SSL Certificate... Moderate Unreviewed
CVE-2020-14980 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database