GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,438
Composer 4,411
Erlang 33
GitHub Actions 22
Go 2,146
Maven 5,316
npm 3,808
NuGet 687
pip 3,481
Pub 12
RubyGems 897
Rust 899
Swift 38

Unreviewed advisories

All unreviewed 246,106

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

470 advisories

Filter by severity

Sort by

Least recently updated

A flaw was discovered in ECE before 3.1.1 that could lead to the disclosure of the SAML signing... Moderate Unreviewed

CVE-2022-23716 was published Sep 29, 2022

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.2 and 5.2.0.0 through 5.2.6.5... Moderate Unreviewed

CVE-2020-4671 was published May 24, 2022

IBM Cloud Pak for Automation 20.0.3, 20.0.2-IF002 - Business Automation Application Designer... Moderate Unreviewed

CVE-2021-20359 was published May 24, 2022

Under certain conditions, Teradici PCoIP Agents for Windows prior to version 20.10.0 and Teradici... Moderate Unreviewed

CVE-2021-25688 was published May 24, 2022

Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contain a plain-text... Moderate Unreviewed

CVE-2020-26199 was published May 24, 2022

There is an information leakage vulnerability in some huawei products. Due to the properly... Moderate Unreviewed

CVE-2021-22310 was published May 24, 2022

A vulnerability in the audit logging component of Cisco Unified Communications Manager, Cisco... Moderate Unreviewed

CVE-2021-1226 was published May 24, 2022

An information exposure through log file vulnerability exists in Palo Alto Networks PAN-OS... Moderate Unreviewed

CVE-2021-3036 was published May 24, 2022

Dell EMC NetWorker, 18.x, 19.1.x, 19.2.x 19.3.x, 19.4 and 19.4.0.1, contains an Information... Moderate Unreviewed

CVE-2021-21558 was published May 24, 2022

IBM Spectrum Protect Plus File Systems Agent 10.1.6 and 10.1.7 stores potentially sensitive... Moderate Unreviewed

CVE-2021-20536 was published May 24, 2022

An information exposure through log file vulnerability exists in the Palo Alto Networks Prisma... Moderate Unreviewed

CVE-2021-3039 was published May 24, 2022

In sspRequestCallback of BondStateMachine.java, there is a possible leak of Bluetooth MAC... Moderate Unreviewed

CVE-2021-0549 was published May 24, 2022

BMC Remedy Mid Tier 9.1SP3 is affected by log hijacking. Remote logging can be accessed by... Moderate Unreviewed

CVE-2017-17675 was published May 24, 2022

A flaw was found in the AMQ Broker that discloses JDBC encrypted usernames and passwords when... Moderate Unreviewed

CVE-2021-3425 was published May 24, 2022

GitLab CE/EE since version 9.5 allows a high privilege user to obtain sensitive information from... Moderate Unreviewed

CVE-2021-22219 was published May 24, 2022

Improper log management vulnerability in Galaxy Watch3 PlugIn prior to version 2.2.09.21033151... Moderate Unreviewed

CVE-2021-25421 was published May 24, 2022

A clear text storage of sensitive information into log file vulnerability in FortiADCManager 5.3... Moderate Unreviewed

CVE-2021-24024 was published May 24, 2022

Improper log management vulnerability in Watch Active2 PlugIn prior to 2.2.08.21033151 version... Moderate Unreviewed

CVE-2021-25423 was published May 24, 2022

Improper log management vulnerability in Watch Active PlugIn prior to version 2.2.07.21033151... Moderate Unreviewed

CVE-2021-25422 was published May 24, 2022

Improper log management vulnerability in Galaxy Watch PlugIn prior to version 2.2.05.21033151... Moderate Unreviewed

CVE-2021-25420 was published May 24, 2022

IBM QRadar SIEM 7.3, 7.4, and 7.5 stores potentially sensitive information in log files that... Moderate Unreviewed

CVE-2021-38939 was published Apr 28, 2022

Foundry Issues service versions 2.244.0 to 2.249.0 was found to be logging in a manner that... Moderate Unreviewed

CVE-2022-27888 was published Apr 28, 2022

myFax version 229 logs sensitive information in the export log module which allows any user to... Moderate Unreviewed

CVE-2020-24038 was published May 24, 2022

iDrive RemotePC before 7.6.48 on Windows allows information disclosure. A locally authenticated... Moderate Unreviewed

CVE-2021-34689 was published May 24, 2022

Dell EMC NetWorker versions 18.x,19.x prior to 19.3.0.4 and 19.4.0.0 contain an Information... Moderate Unreviewed

CVE-2021-21546 was published May 24, 2022

Previous 1 2 3 4 5 … 18 19 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

470 advisories