GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
38 advisories
Filter by severity
Certain Cypress (and Broadcom) Wireless Combo chips, when a January 2021 firmware update is not...
Low
Unreviewed
CVE-2020-10368
was published
Nov 11, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Low
Unreviewed
CVE-2024-44275
was published
Oct 28, 2024
This issue was addressed with improved redaction of sensitive information. This issue is fixed in...
Low
Unreviewed
CVE-2024-44222
was published
Oct 28, 2024
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition...
Low
Unreviewed
CVE-2024-21211
was published
Oct 15, 2024
HCL Nomad server on Domino did not configure certain HTTP Security headers by default which could...
Low
Unreviewed
CVE-2024-30132
was published
Oct 1, 2024
An issue was discovered in Infinera hiT 7300 5.60.50. Hidden functionality in the web interface...
Low
Unreviewed
CVE-2024-28808
was published
Sep 30, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6. An app...
Low
Unreviewed
CVE-2024-40832
was published
Jul 30, 2024
udn News Android APP stores the unencrypted user session in the local database when user log into...
Low
Unreviewed
CVE-2024-6295
was published
Jun 25, 2024
An issue in CmsEasy v.7.7 and before allows a remote attacker to obtain sensitive information via...
Low
Unreviewed
CVE-2024-32236
was published
Apr 25, 2024
Sametime Connect desktop chat client includes, but does not use or require, the use of an Eclipse...
Low
Unreviewed
CVE-2023-37540
was published
Feb 23, 2024
The issue was resolved by sanitizing logging This issue is fixed in watchOS 10.1, macOS Sonoma 14...
Low
Unreviewed
CVE-2023-42823
was published
Feb 21, 2024
HCL BigFix Bare OSD Metal Server WebUI version 311.19 or lower can sometimes include sensitive...
Low
Unreviewed
CVE-2023-37521
was published
Jan 16, 2024
Some Honor products are affected by information leak vulnerability, successful exploitation...
Low
Unreviewed
CVE-2023-23437
was published
Dec 29, 2023
Default permissions for a properties file were too permissive. Local system users could read...
Low
Unreviewed
CVE-2023-26427
was published
Jun 20, 2023
Logins saved by Firefox should be managed by the Password Manager component which uses encryption...
Low
Unreviewed
CVE-2022-42931
was published
Dec 22, 2022
IBM Sterling Partner Engagement Manager 2.0 allows encrypted storage of client data to be stored...
Low
Unreviewed
CVE-2022-34354
was published
Nov 16, 2022
IBM CICS TX 11.1 allows web pages to be stored locally which can be read by another user on the...
Low
Unreviewed
CVE-2022-34312
was published
Nov 14, 2022
IBM Edge 4.2 allows web pages to be stored locally which can be read by another user on the...
Low
Unreviewed
CVE-2020-4805
was published
May 24, 2022
IBM Edge 4.2 allows web pages to be stored locally which can be read by another user on the...
Low
Unreviewed
CVE-2020-4803
was published
May 24, 2022
IBM Edge 4.2 allows web pages to be stored locally which can be read by another user on the...
Low
Unreviewed
CVE-2020-4809
was published
May 24, 2022
IBM QRadar Analyst Workflow App 1.0 through 1.18.0 for IBM QRadar SIEM allows web pages to be...
Low
Unreviewed
CVE-2021-20396
was published
May 24, 2022
Information Exposure vulnerability in SmartThings prior to version 1.7.64.21 allows attacker to...
Low
Unreviewed
CVE-2021-25404
was published
May 24, 2022
Information Exposure vulnerability in Samsung Notes prior to version 4.2.04.27 allows attacker to...
Low
Unreviewed
CVE-2021-25402
was published
May 24, 2022
IBM Security Verify Access 20.07 allows web pages to be stored locally which can be read by...
Low
Unreviewed
CVE-2021-20575
was published
May 24, 2022
IBM Cloud Pak for Multicloud Management prior to 2.3 allows web pages to be stored locally which...
Low
Unreviewed
CVE-2020-4765
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API