GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,262
Erlang
31
GitHub Actions
21
Go
2,024
Maven
5,000+
npm
3,731
NuGet
662
pip
3,407
Pub
12
RubyGems
891
Rust
864
Swift
36
Unreviewed advisories
All unreviewed
5,000+
122 advisories
Filter by severity
HCL Launch could disclose sensitive information if a manual edit of a configuration file has been...
Moderate
Unreviewed
CVE-2023-23348
was published
Jul 10, 2023
Exposure of sensitive information to an unauthorized actor issue exists in ELECOM wireless LAN...
Moderate
Unreviewed
CVE-2023-37563
was published
Jul 13, 2023
Progress Chef Infra Server before 15.7 allows a local attacker to exploit a /var/opt/opscode...
Moderate
Unreviewed
CVE-2023-28864
was published
Jul 17, 2023
Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator...
Moderate
Unreviewed
CVE-2023-37439
was published
Aug 22, 2023
IBM Sterling Secure Proxy 6.0.3 and 6.1.0 could allow a local user with specific information...
Moderate
Unreviewed
CVE-2023-29261
was published
Sep 5, 2023
vCenter Server contains a partial information disclosure vulnerability. A malicious actor with...
Moderate
Unreviewed
CVE-2023-34056
was published
Oct 25, 2023
A vulnerability in Veeam ONE allows a user with the Veeam ONE Read-Only User role to view the...
Moderate
Unreviewed
CVE-2023-41723
was published
Nov 14, 2023
A saved encryption key in the Uninstaller in Digital Guardian's Agent before version 7.9.4 allows...
Moderate
Unreviewed
CVE-2023-6253
was published
Nov 22, 2023
Logging of the firestore key within nodejs-firestore
Moderate
CVE-2023-6460
was published
for
@google-cloud/firestore
(npm)
Dec 4, 2023
IBM i Access Client Solutions 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.3 could allow an...
Moderate
Unreviewed
CVE-2023-45184
was published
Dec 14, 2023
Users’ product account authentication data was stored in clear text in The Genie Company Aladdin...
Moderate
Unreviewed
CVE-2023-5879
was published
Jan 3, 2024
Insecure Permissiosn vulnerability in TP Link TC70 and C200 WIFI Camera v.3 firmware v.1.3.4 and...
Moderate
Unreviewed
CVE-2023-49515
was published
Jan 17, 2024
Apache Solr's Streaming Expressions allow users to extract data from other Solr Clouds
Moderate
CVE-2023-50298
was published
for
org.apache.solr:solr-solrj
(Maven)
Feb 9, 2024
A hidden interface in Motorola CX2L Router firmware v1.0.1 leaks information regarding the...
Moderate
Unreviewed
CVE-2024-25360
was published
Feb 12, 2024
In multiple files, there is a possible way that trimmed content could be included in PDF output...
Moderate
Unreviewed
CVE-2023-40093
was published
Feb 16, 2024
This issue was addressed with improved state management. This issue is fixed in tvOS 17.1,...
Moderate
Unreviewed
CVE-2023-42839
was published
Feb 21, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.1, macOS...
Moderate
Unreviewed
CVE-2023-42840
was published
Feb 21, 2024
A privacy issue was addressed with improved private data redaction for log entries. This issue is...
Moderate
Unreviewed
CVE-2023-42878
was published
Feb 21, 2024
An issue in uverif v.2.0 allows a remote attacker to obtain sensitive information.
Moderate
Unreviewed
CVE-2024-26559
was published
Feb 29, 2024
in OpenHarmony v3.2.4 and prior versions allow a local attacker cause sensitive information leak...
Moderate
Unreviewed
CVE-2024-21826
was published
Mar 4, 2024
A privacy issue was addressed with improved private data redaction for log entries. This issue is...
Moderate
Unreviewed
CVE-2024-23205
was published
Mar 8, 2024
This issue was addressed through improved state management. This issue is fixed in tvOS 17.4, iOS...
Moderate
Unreviewed
CVE-2024-23241
was published
Mar 8, 2024
A logic issue was addressed with improved restrictions. This issue is fixed in tvOS 17.4, iOS 17...
Moderate
Unreviewed
CVE-2024-23290
was published
Mar 8, 2024
Insecure storage of LDAP passwords in the authentication functionality of AVSystem Unified...
Moderate
Unreviewed
CVE-2024-25655
was published
Mar 18, 2024
In flashc, there is a possible information disclosure due to an uncaught exception. This could...
Moderate
Unreviewed
CVE-2024-20050
was published
Apr 1, 2024
ProTip!
Advisories are also available from the
GraphQL API