GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,218
Erlang
31
GitHub Actions
19
Go
1,988
Maven
5,000+
npm
3,704
NuGet
661
pip
3,332
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
36 advisories
Filter by severity
An issue was discovered in Infinera hiT 7300 5.60.50. Hidden functionality in the web interface...
Low
Unreviewed
CVE-2024-28808
was published
Sep 30, 2024
The issue was resolved by sanitizing logging This issue is fixed in watchOS 10.1, macOS Sonoma 14...
Low
Unreviewed
CVE-2023-42823
was published
Feb 21, 2024
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition...
Low
Unreviewed
CVE-2024-21211
was published
Oct 15, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6. An app...
Low
Unreviewed
CVE-2024-40832
was published
Jul 30, 2024
HCL Nomad server on Domino did not configure certain HTTP Security headers by default which could...
Low
Unreviewed
CVE-2024-30132
was published
Oct 1, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Low
Unreviewed
CVE-2024-44275
was published
Oct 28, 2024
This issue was addressed with improved redaction of sensitive information. This issue is fixed in...
Low
Unreviewed
CVE-2024-44222
was published
Oct 28, 2024
HCL BigFix Bare OSD Metal Server WebUI version 311.19 or lower can sometimes include sensitive...
Low
Unreviewed
CVE-2023-37521
was published
Jan 16, 2024
Some Honor products are affected by information leak vulnerability, successful exploitation...
Low
Unreviewed
CVE-2023-23437
was published
Dec 29, 2023
An issue in CmsEasy v.7.7 and before allows a remote attacker to obtain sensitive information via...
Low
Unreviewed
CVE-2024-32236
was published
Apr 25, 2024
udn News Android APP stores the unencrypted user session in the local database when user log into...
Low
Unreviewed
CVE-2024-6295
was published
Jun 25, 2024
Default permissions for a properties file were too permissive. Local system users could read...
Low
Unreviewed
CVE-2023-26427
was published
Jun 20, 2023
Insecure storage of sensitive information vulnerability in Smart Capture prior to version 4.8.02...
Low
Unreviewed
CVE-2021-25522
was published
Dec 9, 2021
Insecure storage of device information in Samsung Dialer prior to version 12.7.05.24 allows...
Low
Unreviewed
CVE-2021-25523
was published
Dec 9, 2021
Insecure storage of device information in Contacts prior to version 12.7.05.24 allows attacker to...
Low
Unreviewed
CVE-2021-25524
was published
Dec 9, 2021
IBM Edge 4.2 allows web pages to be stored locally which can be read by another user on the...
Low
Unreviewed
CVE-2020-4805
was published
May 24, 2022
IBM Edge 4.2 allows web pages to be stored locally which can be read by another user on the...
Low
Unreviewed
CVE-2020-4803
was published
May 24, 2022
IBM Edge 4.2 allows web pages to be stored locally which can be read by another user on the...
Low
Unreviewed
CVE-2020-4809
was published
May 24, 2022
An insecure data storage vulnerability allows a physical attacker with root privileges to...
Low
Unreviewed
CVE-2021-25266
was published
Apr 28, 2022
Information Exposure vulnerability in SmartThings prior to version 1.7.64.21 allows attacker to...
Low
Unreviewed
CVE-2021-25404
was published
May 24, 2022
IBM QRadar Analyst Workflow App 1.0 through 1.18.0 for IBM QRadar SIEM allows web pages to be...
Low
Unreviewed
CVE-2021-20396
was published
May 24, 2022
IBM QRadar User Behavior Analytics 1.0.0 through 4.1.0 allows web pages to be stored locally...
Low
Unreviewed
CVE-2021-20391
was published
May 24, 2022
Information Exposure vulnerability in Samsung Notes prior to version 4.2.04.27 allows attacker to...
Low
Unreviewed
CVE-2021-25402
was published
May 24, 2022
IBM Security Verify Access 20.07 allows web pages to be stored locally which can be read by...
Low
Unreviewed
CVE-2021-20575
was published
May 24, 2022
IBM Cloud Pak for Multicloud Management prior to 2.3 allows web pages to be stored locally which...
Low
Unreviewed
CVE-2020-4765
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API