Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,150
NuGet
736
pip
3,952
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

567 advisories

Loading
Windows Kernel Information Disclosure Vulnerability. Moderate Unreviewed
CVE-2022-21845 was published Jul 13, 2022
Windows Network File System Information Disclosure Vulnerability. Moderate Unreviewed
CVE-2022-22028 was published Jul 13, 2022
Windows Hyper-V Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-30223. Moderate Unreviewed
CVE-2022-22042 was published Jul 13, 2022
Windows BitLocker Information Disclosure Vulnerability. Moderate Unreviewed
CVE-2022-22711 was published Jul 13, 2022
Microsoft: CBC Padding Oracle in Azure Blob Storage Encryption Library Moderate
CVE-2022-30187 was published for Azure.Storage.Blobs (Maven) Jul 13, 2022
andrewpollock
Windows Hyper-V Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-22042. Moderate Unreviewed
CVE-2022-30223 was published Jul 13, 2022
A URL disclosure issue was discovered in Burp Suite before 2022.6. If a user views a crafted... Moderate Unreviewed
CVE-2022-35406 was published Jul 9, 2022
JFrog Artifactory prior to version 7.31.10 and 6.23.38 is vulnerable to Sensitive Data Exposure... Moderate Unreviewed
CVE-2021-46687 was published Jul 7, 2022
Improper authentication vulnerability in Scheduler of Cybozu Garoon 4.10.0 to 5.5.1 allows a... Moderate Unreviewed
CVE-2022-28713 was published Jul 5, 2022
Address information disclosure vulnerability in Cybozu Garoon 4.2.0 to 5.5.1 allows a remote... Moderate Unreviewed
CVE-2022-29467 was published Jul 5, 2022
Browse restriction bypass vulnerability in Bulletin of Cybozu Garoon allows a remote... Moderate Unreviewed
CVE-2022-29471 was published Jul 5, 2022
Incorrect authorization in GitLab EE affecting all versions from 10.7 prior to 14.10.5, 15.0... Moderate Unreviewed
CVE-2022-1983 was published Jul 2, 2022
IBM Spectrum Protect Operations Center 8.1.0.000 through 8.1.14 could allow a remote attacker to... Moderate Unreviewed
CVE-2022-22494 was published Jul 1, 2022
IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 could allow a low level user to obtain sensitive... Moderate Unreviewed
CVE-2021-29768 was published Jun 25, 2022
IBM Jazz Team Server 6.0.6, 6.0.6.1, 7.0, 7.0.1, and 7.0.2 could allow a remote attacker to... Moderate Unreviewed
CVE-2021-38879 was published Jun 25, 2022
IBM Jazz Team Server 6.0.6, 6.0.6.1, 7.0, 7.0.1, and 7.0.2 could allow a remote attacker to... Moderate Unreviewed
CVE-2021-20355 was published Jun 25, 2022
IBM Robotic Process Automation 21.0.2 could allow a local user to obtain sensitive web service... Moderate Unreviewed
CVE-2022-22414 was published Jun 21, 2022
IBM Robotic Process Automation 20.10.0, 20.12.5, 21.0.0, 21.0.1, and 21.0.2 contains a... Moderate Unreviewed
CVE-2022-30607 was published Jun 18, 2022
Processing DCB/AVB algorithm with an invalid queue index from IOCTL request could lead to... Moderate Unreviewed
CVE-2021-35092 was published Jun 15, 2022
RPM secure Stream can access any secure resource due to improper SMMU configuration in Snapdragon... Moderate Unreviewed
CVE-2021-30345 was published Jun 15, 2022
RPM secure Stream can access any secure resource due to improper SMMU configuration in Snapdragon... Moderate Unreviewed
CVE-2021-30346 was published Jun 15, 2022
A vulnerability has been found in Klapp App and classified as problematic. This vulnerability... Moderate Unreviewed
CVE-2020-36532 was published Jun 8, 2022
Sensitive information exposure in Sign-out log in Samsung Account prior to version 13.2.00.6... Moderate Unreviewed
CVE-2022-30734 was published Jun 8, 2022
libcurl wrongly allows cookies to be set for Top Level Domains (TLDs) if thehost name is provided... Moderate Unreviewed
CVE-2022-27779 was published Jun 3, 2022
A cookie management issue was addressed with improved state management. This issue is fixed in... Moderate Unreviewed
CVE-2022-22662 was published May 27, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database