Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
661
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

210 advisories

Loading
A privacy issue was addressed with improved private data redaction for log entries. This issue is... Moderate Unreviewed
CVE-2024-23205 was published Mar 8, 2024
The encrypted subject of an email message could be incorrectly and permanently assigned to an... High Unreviewed
CVE-2024-1936 was published Mar 5, 2024
in OpenHarmony v3.2.4 and prior versions allow a local attacker cause sensitive information leak... Moderate Unreviewed
CVE-2024-21826 was published Mar 4, 2024
An issue in uverif v.2.0 allows a remote attacker to obtain sensitive information. Moderate Unreviewed
CVE-2024-26559 was published Feb 29, 2024
Apache Camel data exposure vulnerability Low
CVE-2024-22371 was published for org.apache.camel:camel-core (Maven) Feb 26, 2024
rsrikanth11
The issue was resolved by sanitizing logging This issue is fixed in watchOS 10.1, macOS Sonoma 14... Low Unreviewed
CVE-2023-42823 was published Feb 21, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.1, macOS... Moderate Unreviewed
CVE-2023-42840 was published Feb 21, 2024
A hidden interface in Motorola CX2L Router firmware v1.0.1 leaks information regarding the... Moderate Unreviewed
CVE-2024-25360 was published Feb 12, 2024
ExpressVPN before 12.73.0 on Windows, when split tunneling is used, sends DNS requests according... High Unreviewed
CVE-2024-25728 was published Feb 12, 2024
Apache Solr's Streaming Expressions allow users to extract data from other Solr Clouds Moderate
CVE-2023-50298 was published for org.apache.solr:solr-solrj (Maven) Feb 9, 2024
DanielRuf
Intelbras Roteador ACtion RF 1200 1.2.2 esposes the Password in Cookie resulting in Login Bypass. High Unreviewed
CVE-2024-22773 was published Feb 6, 2024
vantage6 may create unencrypted tasks in encrypted collaboration Low
CVE-2024-22193 was published for vantage6 (pip) Jan 30, 2024
Insecure Permissiosn vulnerability in TP Link TC70 and C200 WIFI Camera v.3 firmware v.1.3.4 and... Moderate Unreviewed
CVE-2023-49515 was published Jan 17, 2024
HCL BigFix Bare OSD Metal Server WebUI version 311.19 or lower can sometimes include sensitive... Low Unreviewed
CVE-2023-37521 was published Jan 16, 2024
Users’ product account authentication data was stored in clear text in The Genie Company Aladdin... Moderate Unreviewed
CVE-2023-5879 was published Jan 3, 2024
Some Honor products are affected by information leak vulnerability, successful exploitation... Low Unreviewed
CVE-2023-23437 was published Dec 29, 2023
IBM i Access Client Solutions 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.3 is vulnerable to... High Unreviewed
CVE-2023-45182 was published Dec 14, 2023
IBM i Access Client Solutions 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.3 could allow an... Moderate Unreviewed
CVE-2023-45184 was published Dec 14, 2023
Logging of the firestore key within nodejs-firestore Moderate
CVE-2023-6460 was published for @google-cloud/firestore (npm) Dec 4, 2023
abhishekwebcode
A saved encryption key in the Uninstaller in Digital Guardian's Agent before version 7.9.4 allows... Moderate Unreviewed
CVE-2023-6253 was published Nov 22, 2023
A vulnerability in Veeam ONE allows a user with the Veeam ONE Read-Only User role to view the... Moderate Unreviewed
CVE-2023-41723 was published Nov 14, 2023
vCenter Server contains a partial information disclosure vulnerability. A malicious actor with... Moderate Unreviewed
CVE-2023-34056 was published Oct 25, 2023
A Insecure Storage of Sensitive Information vulnerability in openSUSE opensuse-welcome allows... High Unreviewed
CVE-2023-32184 was published Sep 19, 2023
** UNSUPPPORTED WHEN ASSIGNED ** Sending some requests in the web application of the... High Unreviewed
CVE-2023-41965 was published Sep 18, 2023
Insecure storage of sensitive information in Wing FTP Server (User Web Client) allows information... High Unreviewed
CVE-2023-37879 was published Sep 15, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database