Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,150
NuGet
736
pip
3,952
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

157 advisories

Loading
The issue was addressed with improved handling of caches. This issue is fixed in iOS 18.7 and... Moderate Unreviewed
CVE-2025-43203 was published Sep 16, 2025
Insecure Storage of Sensitive Information vulnerability in Calix GigaCenter ONT (Quantenna SoC... Moderate Unreviewed
CVE-2025-54083 was published Sep 9, 2025
An issue was discovered in 4C Strategies Exonaut 21.6. Passwords, stored in the database, are... Moderate Unreviewed
CVE-2025-46660 was published Aug 6, 2025
A vulnerability was discovered in the storage policy for certain sets of sensitive credential... Moderate Unreviewed
CVE-2025-37110 was published Jul 31, 2025
An issue in Grandstream UCM6510 v.1.0.20.52 and before allows a remote attacker to obtain... Moderate Unreviewed
CVE-2025-28171 was published Jul 29, 2025
Insecure storage of sensitive information in Emergency SOS prior to SMR Jul-2025 Release 1 allows... Moderate Unreviewed
CVE-2025-21003 was published Jul 8, 2025
The GuiXT application, which is integrated with SAP GUI for Windows, uses obfuscation algorithms... Moderate Unreviewed
CVE-2025-42979 was published Jul 8, 2025
The TeleMessage service through 2025-05-05 implements authentication through a long-lived... Moderate Unreviewed
CVE-2025-48929 was published May 28, 2025
Serialized configuration information may be disclosed during device commissioning while using... Moderate Unreviewed
CVE-2024-13954 was published May 22, 2025
CWE-922: Insecure Storage of Sensitive Information vulnerability exists that could potentially... Moderate Unreviewed
CVE-2025-2440 was published Apr 9, 2025
Insecure information storage vulnerability in NTFS Tools version 3.5.1. Exploitation of this... Moderate Unreviewed
CVE-2025-2489 was published Mar 18, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker cause information leak through... Moderate Unreviewed
CVE-2025-21098 was published Mar 4, 2025
The connection string visible to users with access to FRSCore database on Foreseer Reporting... Moderate Unreviewed
CVE-2025-22492 was published Feb 28, 2025
Inclusion of sensitive information in test code in softsim TA prior to SMR Jan-2025 Release 1... Moderate Unreviewed
CVE-2025-20886 was published Feb 4, 2025
An information disclosure issue was addressed with improved privacy controls. This issue is fixed... Moderate Unreviewed
CVE-2025-24134 was published Jan 28, 2025
This issue was addressed through improved state management. This issue is fixed in macOS Ventura... Moderate Unreviewed
CVE-2025-24138 was published Jan 28, 2025
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iPadOS... Moderate Unreviewed
CVE-2025-24149 was published Jan 28, 2025
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Moderate Unreviewed
CVE-2025-24117 was published Jan 28, 2025
An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-24108 was published Jan 28, 2025
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-24103 was published Jan 28, 2025
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.7.2, macOS... Moderate Unreviewed
CVE-2024-54547 was published Jan 28, 2025
This issue was addressed through improved state management. This issue is fixed in macOS Ventura... Moderate Unreviewed
CVE-2024-54541 was published Jan 28, 2025
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Moderate Unreviewed
CVE-2025-24101 was published Jan 28, 2025
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Moderate Unreviewed
CVE-2024-54549 was published Jan 28, 2025
Xerox Workplace Suite stores tokens in session storage, which may expose them to potential access... Moderate Unreviewed
CVE-2024-55931 was published Jan 27, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database