GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,532
Composer 4,189
Erlang 31
GitHub Actions 19
Go 1,984
Maven 5,159
npm 3,701
NuGet 657
pip 3,325
Pub 11
RubyGems 882
Rust 835
Swift 35

Unreviewed advisories

All unreviewed 233,096

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

32 advisories

Filter by severity

Sort by

Least recently updated

Profile files from TRO600 series radios are extracted in plain-text and encrypted file formats.... Low Unreviewed

CVE-2024-41156 was published Oct 29, 2024

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: lantiq_etop:... High Unreviewed

CVE-2024-49997 was published Oct 21, 2024

Windows Kernel-Mode Driver Information Disclosure Vulnerability Moderate Unreviewed

CVE-2024-43554 was published Oct 8, 2024

A low privileged remote attacker can get access to CSRF tokens of higher privileged users which... Moderate Unreviewed

CVE-2024-7698 was published Sep 10, 2024

In Streampark (version < 2.1.4), when a user logged in successfully, the Backend service would... Unknown Unreviewed

CVE-2024-29120 was published Jul 17, 2024

Improper removal of sensitive information in data source export feature in Devolutions Remote... Moderate Unreviewed

CVE-2024-6055 was published Jun 17, 2024

An improper removal of sensitive information before storage or transfer vulnerability [CWE-212]... Moderate Unreviewed

CVE-2024-31493 was published Jun 3, 2024

Information management vulnerability in the Gallery module.Successful exploitation of this... High Unreviewed

CVE-2023-52376 was published Feb 18, 2024

Sensitive information uncleared after debug/power state transition in the Controller 6000 could... Low Unreviewed

CVE-2023-41967 was published Dec 19, 2023

A known cache speculation vulnerability, known as Branch History Injection (BHI) or Spectre-BHB,... Moderate Unreviewed

CVE-2023-3006 was published May 31, 2023

A flaw that boot CPU could be vulnerable for the speculative execution behavior kind of attacks... Moderate Unreviewed

CVE-2023-1637 was published Mar 28, 2023

A flaw was found in the Linux kernel. The existing KVM SEV API has a vulnerability that allows a... Moderate Unreviewed

CVE-2022-0171 was published Aug 27, 2022

AMD microprocessor families 15h to 18h are affected by a new Spectre variant that is able to... Moderate Unreviewed

CVE-2022-29900 was published Jul 13, 2022

Vulnerability of residual files not being deleted after an update in the ChinaDRM module.... High Unreviewed

CVE-2021-46813 was published Jun 14, 2022

Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository polonel/trudesk... Moderate Unreviewed

CVE-2022-1893 was published Jun 1, 2022

An issue was discovered in Mbed TLS before 2.24.0 (and before 2.16.8 LTS and before 2.7.17 LTS).... High Unreviewed

CVE-2020-36476 was published May 24, 2022

An information disclosure vulnerability was found in libvirt in versions before 6.3.0. HTTP... High Unreviewed

CVE-2020-14301 was published May 24, 2022

In app/Model/MispObject.php in MISP 2.4.141, an incorrect sharing group association could lead to... High Unreviewed

CVE-2021-31780 was published May 24, 2022

In parseNextBox of IsoInterface.java, there is a possible leak of unredacted location information... High Unreviewed

CVE-2021-0340 was published May 24, 2022

Padding bytes in Ethernet packets on PA-200, PA-220, PA-500, PA-800, PA-2000 Series, PA-3000... Moderate Unreviewed

CVE-2021-3031 was published May 24, 2022

Some websites have a feature "Show Password" where clicking a button will change a password field... Moderate Unreviewed

CVE-2020-26965 was published May 24, 2022

Improper removal of sensitive information before storage or transfer in some Intel(R) Processors... Moderate Unreviewed

CVE-2020-8696 was published May 24, 2022

Broker Protocol messages in Teradici PCoIP Standard Agent for Windows and Graphics Agent for... Low Unreviewed

CVE-2020-13179 was published May 24, 2022

An issue was discovered in xenoprof in Xen through 4.13.x, allowing guest OS users (without... Low Unreviewed

CVE-2020-11740 was published May 24, 2022

An issue was discovered in Varnish Cache before 6.0.5 LTS, 6.1.x and 6.2.x before 6.2.2, and 6.3... Moderate Unreviewed

CVE-2019-20637 was published May 24, 2022

Previous 1 2 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

32 advisories