Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,154
NuGet
736
pip
3,953
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

847 advisories

Loading
Windows Hyper-V Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-30223. Moderate Unreviewed
CVE-2022-22042 was published Jul 13, 2022
Under special integration scenario of SAP Business one and SAP HANA - version 10.0, an attacker... High Unreviewed
CVE-2022-32249 was published Jul 13, 2022
Windows BitLocker Information Disclosure Vulnerability. Moderate Unreviewed
CVE-2022-22711 was published Jul 13, 2022
Windows Hyper-V Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-22042. Moderate Unreviewed
CVE-2022-30223 was published Jul 13, 2022
A URL disclosure issue was discovered in Burp Suite before 2022.6. If a user views a crafted... Moderate Unreviewed
CVE-2022-35406 was published Jul 9, 2022
JFrog Artifactory prior to version 7.31.10 and 6.23.38 is vulnerable to Sensitive Data Exposure... Moderate Unreviewed
CVE-2021-46687 was published Jul 7, 2022
In IOBit Advanced System Care (AscService.exe) 15, an attacker with SEImpersonatePrivilege can... High Unreviewed
CVE-2022-24139 was published Jul 7, 2022
Address information disclosure vulnerability in Cybozu Garoon 4.2.0 to 5.5.1 allows a remote... Moderate Unreviewed
CVE-2022-29467 was published Jul 5, 2022
Improper authentication vulnerability in Scheduler of Cybozu Garoon 4.10.0 to 5.5.1 allows a... Moderate Unreviewed
CVE-2022-28713 was published Jul 5, 2022
Browse restriction bypass vulnerability in Bulletin of Cybozu Garoon allows a remote... Moderate Unreviewed
CVE-2022-29471 was published Jul 5, 2022
Incorrect authorization in GitLab EE affecting all versions from 10.7 prior to 14.10.5, 15.0... Moderate Unreviewed
CVE-2022-1983 was published Jul 2, 2022
IBM Spectrum Protect Operations Center 8.1.0.000 through 8.1.14 could allow a remote attacker to... Moderate Unreviewed
CVE-2022-22494 was published Jul 1, 2022
In a openshift node, there is a cron job to update mcollective facts that mishandles a temporary... Critical Unreviewed
CVE-2013-4561 was published Jul 1, 2022
A CWE-668 Exposure of Resource to Wrong Sphere vulnerability exists that could cause users to be... High Unreviewed
CVE-2022-32530 was published Jun 25, 2022
IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 could allow a low level user to obtain sensitive... Moderate Unreviewed
CVE-2021-29768 was published Jun 25, 2022
IBM Jazz Team Server 6.0.6, 6.0.6.1, 7.0, 7.0.1, and 7.0.2 could allow a remote attacker to... Moderate Unreviewed
CVE-2021-38879 was published Jun 25, 2022
IBM Jazz Team Server 6.0.6, 6.0.6.1, 7.0, 7.0.1, and 7.0.2 allows web pages to be stored locally... Low Unreviewed
CVE-2021-20551 was published Jun 25, 2022
IBM Jazz Team Server 6.0.6, 6.0.6.1, 7.0, 7.0.1, and 7.0.2 could allow a remote attacker to... Moderate Unreviewed
CVE-2021-20355 was published Jun 25, 2022
IBM Robotic Process Automation 21.0.2 could allow a local user to obtain sensitive web service... Moderate Unreviewed
CVE-2022-22414 was published Jun 21, 2022
IBM Robotic Process Automation 20.10.0, 20.12.5, 21.0.0, 21.0.1, and 21.0.2 contains a... Moderate Unreviewed
CVE-2022-30607 was published Jun 18, 2022
An issue was discovered in function sync_tree in hetero_decision_tree_guest.py in WeBank FATE ... High Unreviewed
CVE-2020-25459 was published Jun 17, 2022
CA Automic Automation 12.2 and 12.3 contain an insecure memory handling vulnerability in the... High Unreviewed
CVE-2022-33751 was published Jun 17, 2022
CA Automic Automation 12.2 and 12.3 contain an insecure file creation and handling vulnerability... High Unreviewed
CVE-2022-33753 was published Jun 17, 2022
Processing DCB/AVB algorithm with an invalid queue index from IOCTL request could lead to... Moderate Unreviewed
CVE-2021-35092 was published Jun 15, 2022
RPM secure Stream can access any secure resource due to improper SMMU configuration in Snapdragon... Moderate Unreviewed
CVE-2021-30345 was published Jun 15, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database