Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,150
NuGet
736
pip
3,952
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

157 advisories

Loading
vCenter Server contains a partial information disclosure vulnerability. A malicious actor with... Moderate Unreviewed
CVE-2023-34056 was published Oct 25, 2023
IBM Sterling Secure Proxy 6.0.3 and 6.1.0 could allow a local user with specific information... Moderate Unreviewed
CVE-2023-29261 was published Sep 5, 2023
Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator... Moderate Unreviewed
CVE-2023-37439 was published Aug 22, 2023
Progress Chef Infra Server before 15.7 allows a local attacker to exploit a /var/opt/opscode... Moderate Unreviewed
CVE-2023-28864 was published Jul 17, 2023
Exposure of sensitive information to an unauthorized actor issue exists in ELECOM wireless LAN... Moderate Unreviewed
CVE-2023-37563 was published Jul 13, 2023
HCL Launch could disclose sensitive information if a manual edit of a configuration file has been... Moderate Unreviewed
CVE-2023-23348 was published Jul 10, 2023
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Moderate Unreviewed
CVE-2023-32415 was published Jun 23, 2023
Anonymous user may get the list of existing users managed by the application, that could ease... Moderate Unreviewed
CVE-2023-3064 was published Jun 5, 2023
A Storing Passwords in a Recoverable Format vulnerability in the Schweitzer Engineering... Moderate Unreviewed
CVE-2023-31150 was published May 10, 2023
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.3, macOS... Moderate Unreviewed
CVE-2023-27942 was published May 8, 2023
A privacy issue was addressed with improved private data redaction for log entries. This issue is... Moderate Unreviewed
CVE-2023-23542 was published May 8, 2023
IBM UrbanCode Deploy (UCD) versions up to 7.3.0.1 could disclose sensitive password information... Moderate Unreviewed
CVE-2022-43877 was published May 6, 2023
A privacy issue was addressed with improved handling of temporary files. This issue is fixed in... Moderate Unreviewed
CVE-2023-23522 was published Feb 27, 2023
Improper isolation of shared resources in some Intel(R) Processors when using Intel(R) Software... Moderate Unreviewed
CVE-2022-38090 was published Feb 16, 2023
During iframe navigation, certain pages did not have their FeaturePolicy fully initialized... Moderate Unreviewed
CVE-2022-40959 was published Dec 22, 2022
An issue existed with the file paths used to store website data. The issue was resolved by... Moderate Unreviewed
CVE-2022-32833 was published Dec 15, 2022
Brocade Fabric OS Web Application services before Brocade Fabric v9.1.0, v9.0.1e, v8.2.3c, v7.4... Moderate Unreviewed
CVE-2022-28170 was published Oct 26, 2022
Veritas System Recovery (VSR) versions 18 and 21 store a network destination password in the... Moderate Unreviewed
CVE-2022-41320 was published Sep 25, 2022
Brocade SANnav before Brocade SANvav v. 2.2.0.2 and Brocade SANanv v.2.1.1.8 logs the Brocade... Moderate Unreviewed
CVE-2022-28167 was published Jun 28, 2022
Improper auto-fill algorithm in Samsung Internet prior to version 17.0.1.69 allows physical... Moderate Unreviewed
CVE-2022-30740 was published Jun 8, 2022
An issue was discovered in FlightRadar24 v8.9.0, v8.10.0, v8.10.2, v8.10.3, v8.10.4 for Android,... Moderate Unreviewed
CVE-2021-43512 was published Jun 3, 2022
System Manager 9.x versions 9.7 and higher prior to 9.7P16, 9.8P7 and 9.9.1P2 are susceptible to... Moderate Unreviewed
CVE-2021-27004 was published May 24, 2022
In multiple functions of libl3oemcrypto.cpp, there is a possible weakness in the existing... Moderate Unreviewed
CVE-2021-0639 was published May 24, 2022
In cPanel before 96.0.8, weak permissions on web stats can lead to information disclosure (SEC-584). Moderate Unreviewed
CVE-2021-38590 was published May 24, 2022
An information disclosure vulnerability exists in the Syslog functionality of D-LINK DIR-3040 1... Moderate Unreviewed
CVE-2021-21816 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database