GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,990
Composer 4,293
Erlang 31
GitHub Actions 21
Go 2,061
Maven 5,239
npm 3,744
NuGet 668
pip 3,423
Pub 12
RubyGems 892
Rust 875
Swift 36

Unreviewed advisories

All unreviewed 239,556

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

840 advisories

Filter by severity

Sort by

Least recently updated

When an attacker manages to get access to the local memory, or the memory dump of a victim, for... Moderate Unreviewed

CVE-2021-38150 was published May 24, 2022

There is an insufficient authentication vulnerability in some Huawei smart phone. An... Low Unreviewed

CVE-2020-9250 was published Dec 20, 2024

In JetBrains TeamCity before 2024.12 password field value were accessible to users with view... Moderate Unreviewed

CVE-2024-56354 was published Dec 20, 2024

IBM Robotic Process Automation 21.0.1, 21.0.2, and 21.0.3 could allow a user with psychical... Moderate Unreviewed

CVE-2022-33954 was published Dec 19, 2024

Missing Authentication for Critical Function vulnerability in OpenText™ AccuRev for LDAP... Critical Unreviewed

CVE-2019-17082 was published Nov 26, 2024

This issue was addressed with additional entitlement checks. This issue is fixed in macOS Sonoma... Moderate Unreviewed

CVE-2024-54471 was published Dec 12, 2024

TP-Link TL-WR845N(UN)_V4_201214, TL-WR845N(UN)_V4_200909 and TL-WR845N(UN)_V4_190219 were... High Unreviewed

CVE-2024-50699 was published Dec 10, 2024

STMicroelectronics SPC58 is vulnerable to Missing Protection Mechanism for Alternate Hardware... Critical Unreviewed

CVE-2023-48010 was published Dec 5, 2024

Pentaminds CuroVMS v2.0.1 was discovered to contain exposed credentials. Critical Unreviewed

CVE-2024-40583 was published Dec 9, 2024

TP-Link TL-WR845N(UN)_V4_190219 was discovered to transmit credentials in base64 encoded form,... High Unreviewed

CVE-2024-46341 was published Dec 10, 2024

Claris International has successfully resolved an issue of potentially exposing password... Moderate Unreviewed

CVE-2023-42955 was published May 14, 2024

The front-end audit log allows viewing of unprotected plaintext passwords, where the passwords... High Unreviewed

CVE-2024-36460 was published Aug 12, 2024

A vulnerability has been identified in CPCI85 Central Processing/Communication (All versions <... Moderate Unreviewed

CVE-2024-53832 was published Dec 10, 2024

Username Enumeration vulnerabilities allow access to application level username add, delete,... Critical Unreviewed

CVE-2024-51545 was published Dec 5, 2024

A vulnerability in Veeam Backup & Replication allows users with certain operator roles to expose... High Unreviewed

CVE-2024-42457 was published Dec 4, 2024

On Android, Firefox may have inadvertently allowed viewing saved passwords without the required... Critical Unreviewed

CVE-2024-11703 was published Nov 26, 2024

A security vulnerability in HPE IceWall products could be exploited remotely to cause... Low Unreviewed

CVE-2024-11856 was published Dec 2, 2024

A vulnerability in the storage of proxy server credentials of Cisco Firepower Management Center ... Moderate Unreviewed

CVE-2021-1126 was published May 24, 2022

Seth Fogie, member of the AXIS Camera Station Pro Bug Bounty Program, has found that the Incident... Moderate Unreviewed

CVE-2024-6749 was published Nov 26, 2024

Insufficiently protected credentials issue exists in AIPHONE IX SYSTEM and IXG SYSTEM. A network... Moderate Unreviewed

CVE-2024-39290 was published Nov 22, 2024

AIPHONE IXG SYSTEM IXG-2C7 firmware Ver.2.03 and earlier and IXG-2C7-L firmware Ver.2.03 and... Moderate Unreviewed

CVE-2024-47142 was published Nov 22, 2024

A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could... Moderate Unreviewed

CVE-2021-1232 was published Nov 18, 2024

VMware Avi Load Balancer contains an information disclosure vulnerability. A malicious actor... Moderate Unreviewed

CVE-2024-22266 was published May 8, 2024

An issue was discovered in Couchbase Server before 7.2.4. ns_server admin credentials are leaked... Moderate Unreviewed

CVE-2023-50436 was published Feb 29, 2024

In SAP NetWeaver Java (Software Update Manager 1.1), under certain conditions when a software... Moderate Unreviewed

CVE-2024-47588 was published Nov 12, 2024

Previous 1 2 3 4 5 … 33 34 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

840 advisories