Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+

450 advisories

Loading
Dell EMC PowerScale OneFS versions 8.2.x and 9.1.0.x contain an insertion of sensitive... Moderate Unreviewed
CVE-2021-36278 was published May 24, 2022
Dell EMC Avamar versions 18.2,19.1,19.2,19.3,19.4 contain a plain-text password storage... Moderate Unreviewed
CVE-2021-36318 was published Dec 22, 2021
PuppetDB logging included potentially sensitive system information. Moderate Unreviewed
CVE-2021-27019 was published May 24, 2022
OpenEMR 6.0.0 has a pnotes_print.php?noteid= Insecure Direct Object Reference vulnerability via... Moderate Unreviewed
CVE-2021-40352 was published May 24, 2022
An information disclosure exists in Brave Browser Desktop prior to version 1.28.62, where logged... Moderate Unreviewed
CVE-2021-22929 was published May 24, 2022
A flaw was discovered in bolt-server and ace where running a task with sensitive parameters... Moderate Unreviewed
CVE-2021-27022 was published May 24, 2022
On all versions of Guided Configuration before 8.0.0, when a configuration that contains secure... Moderate Unreviewed
CVE-2021-23046 was published May 24, 2022
Tor Browser through 10.5.6 and 11.x through 11.0a4 allows a correlation attack that can... Moderate Unreviewed
CVE-2021-39246 was published May 24, 2022
A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.12). The... Moderate Unreviewed
CVE-2020-10052 was published May 24, 2022
An information disclosure vulnerability was reported in some Motorola-branded Binatone Hubble... Moderate Unreviewed
CVE-2021-3791 was published May 24, 2022
Insertion of information into log file in firmware for some Intel(R) SSD DC may allow a... Moderate Unreviewed
CVE-2021-0148 was published May 24, 2022
An authenticated attacker could utilize the identical agent and cluster node linking keys to... Moderate Unreviewed
CVE-2022-3499 was published Nov 1, 2022
A vulnerability has been identified in SIMATIC PCS 7 V8.2 and earlier (All versions), SIMATIC PCS... Moderate Unreviewed
CVE-2021-40364 was published May 24, 2022
The log files in Apache web server contain information directly supplied by clients and does not... Moderate Unreviewed
CVE-2001-1556 was published Apr 30, 2022
An information exposure through log file vulnerability exists in Cortex XSOAR software where the... Moderate Unreviewed
CVE-2021-3034 was published May 24, 2022
An information exposure through log file vulnerability exists in Palo Alto Networks PAN-OS... Moderate Unreviewed
CVE-2021-3032 was published May 24, 2022
Sensitive information leak through log files. The following products are affected: Acronis Cyber... Moderate Unreviewed
CVE-2022-44745 was published Nov 8, 2022
An insertion of sensitive information into log file vulnerability exists in PcVue versions 15... Moderate Unreviewed
CVE-2022-4311 was published Dec 12, 2022
A vulnerability has been identified in Micro Focus GroupWise Web in versions prior to 18.4.2. The... Moderate Unreviewed
CVE-2022-38756 was published Dec 17, 2022
IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 could be vulnerable to sensitive information... Moderate Unreviewed
CVE-2022-43887 was published Dec 19, 2022
On F5 BIG-IP APM 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x... Moderate Unreviewed
CVE-2022-27636 was published May 6, 2022
On F5 BIG-IP 15.1.x versions prior to 15.1.5.1 and 14.1.x versions prior to 14.1.4.6, when... Moderate Unreviewed
CVE-2022-28859 was published May 6, 2022
An information exposure through log file vulnerability in Brocade SANNav versions before Brocade... Moderate Unreviewed
CVE-2022-28161 was published May 10, 2022
In JetBrains TeamCity before 2022.04 leak of secrets in TeamCity agent logs was possible Moderate Unreviewed
CVE-2022-29928 was published May 13, 2022
In JetBrains TeamCity before 2022.04.3 the private SSH key could be written to the server log in... Moderate Unreviewed
CVE-2022-38133 was published Aug 11, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database