Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,150
NuGet
736
pip
3,952
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

633 advisories

Loading
Agenzia delle Entrate Desktop Telematico 1.0.0 contacts the jws.agenziaentrate.it server over... Moderate Unreviewed
CVE-2021-3003 was published May 24, 2022
GAEN (aka Google/Apple Exposure Notifications) through 2021-04-27 on Android allows attackers to... Low Unreviewed
CVE-2021-31815 was published May 24, 2022
A smart proxy that provides a restful API to various sub-systems of the Foreman is affected by... Moderate Unreviewed
CVE-2021-3494 was published May 24, 2022
Dell PowerScale OneFS 8.1.0 - 9.1.0 contains an LDAP Provider inability to connect over TLSv1.2... Critical Unreviewed
CVE-2020-26197 was published May 24, 2022
In Fibaro Home Center 2 and Lite devices in all versions provide a web based management interface... High Unreviewed
CVE-2021-20992 was published May 24, 2022
Cleartext Transmission of Sensitive Information vulnerability in the ePO Extension of McAfee... Moderate Unreviewed
CVE-2021-23884 was published May 24, 2022
Cleartext Transmission of Sensitive Information between McAfee Endpoint Security (ENS) for... Moderate Unreviewed
CVE-2020-7308 was published May 24, 2022
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected... High Unreviewed
CVE-2021-27251 was published May 24, 2022
Cleartext transmission of sensitive information in Netop Vision Pro up to and including 9.7.1... High Unreviewed
CVE-2021-27194 was published May 24, 2022
Advantech Spectre RT ERT351 Versions 5.1.3 and prior logins and passwords are transmitted in... High Unreviewed
CVE-2019-18231 was published May 24, 2022
An internal product security audit of LXCO, prior to version 1.2.2, discovered that credentials... Moderate Unreviewed
CVE-2021-3417 was published May 24, 2022
An internal product security audit of LXCO, prior to version 1.2.2, discovered that optional... Moderate Unreviewed
CVE-2020-8356 was published May 24, 2022
Cleartext transmission of sensitive information vulnerability in synoagentregisterd in Synology... Moderate Unreviewed
CVE-2021-26560 was published May 24, 2022
Cleartext transmission of sensitive information vulnerability in synorelayd in Synology... Moderate Unreviewed
CVE-2021-26564 was published May 24, 2022
Cleartext transmission of sensitive information vulnerability in synorelayd in Synology... Moderate Unreviewed
CVE-2021-26565 was published May 24, 2022
A CWE-319: Cleartext transmission of sensitive information vulnerability exists in PowerLogic... High Unreviewed
CVE-2021-22703 was published May 24, 2022
A CWE-319: Cleartext transmission of sensitive information vulnerability exists in PowerLogic... High Unreviewed
CVE-2021-22702 was published May 24, 2022
Cleartext transmission of sensitive information in Agora Video SDK prior to 3.1 allows a remote... Moderate Unreviewed
CVE-2020-25605 was published May 24, 2022
In the management interface on TP-Link Archer C5v 1.7_181221 devices, credentials are sent in a... High Unreviewed
CVE-2021-27209 was published May 24, 2022
IBM Security Verify Information Queue 1.0.6 and 1.0.7 could allow a remote attacker to obtain... High Unreviewed
CVE-2021-20409 was published May 24, 2022
For MongoDB Ops Manager 4.2.X with multiple OM application servers, that have SSL turned on for... Moderate Unreviewed
CVE-2021-20335 was published May 24, 2022
An internal product security audit of Lenovo XClarity Administrator (LXCA) prior to version 3.1.0... Moderate Unreviewed
CVE-2020-8355 was published May 24, 2022
The affected Reolink P2P products do not sufficiently protect data transferred between the local... High Unreviewed
CVE-2020-25169 was published May 24, 2022
IBM Security Identity Governance and Intelligence 5.2.6 could allow a remote attacker to obtain... Moderate Unreviewed
CVE-2020-4969 was published May 24, 2022
IBM Emptoris Strategic Supply Management 10.1.0, 10.1.1, and 10.1.3 transmits sensitive... Moderate Unreviewed
CVE-2020-4893 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database