Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,218
Erlang
31
GitHub Actions
19
Go
1,988
Maven
5,000+
npm
3,704
NuGet
661
pip
3,332
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

56 advisories

Loading
The vulnerability is to theft of arbitrary files with system privilege in the Screen recording (... Low Unreviewed
CVE-2023-44124 was published Sep 27, 2023
The issue was addressed with improved checks. This issue is fixed in iOS 16.5 and iPadOS 16.5,... Low Unreviewed
CVE-2023-32394 was published Jun 23, 2023
Dell Networking OS10 versions 10.4.3.x, 10.5.0.x and 10.5.1.x contain an information exposure... Low Unreviewed
CVE-2021-36319 was published Nov 21, 2021
IBM PowerSC 1.3, 2.0, and 2.1 may allow a remote attacker to view session identifiers passed via... Low Unreviewed
CVE-2023-50328 was published Feb 2, 2024
In Amanda 3.5.1, an information leak vulnerability was found in the calcsize SUID binary. An... Low Unreviewed
CVE-2022-37703 was published Sep 14, 2022
A vulnerability has been identified in PT-G503 Series versions prior to v5.2, where the session... Low Unreviewed
CVE-2023-4217 was published Nov 2, 2023
Authenticated clients can read arbitrary files on the MAIN Computer system using the remote... Low Unreviewed
CVE-2023-2622 was published Nov 1, 2023
lxc-user-nic in lxc through 5.0.1 is installed setuid root, and may allow local users to infer... Low Unreviewed
CVE-2022-47952 was published Jan 1, 2023
In getSerialForPackage of DeviceIdentifiersPolicyService.java, there is a possible way to... Low Unreviewed
CVE-2021-0978 was published Dec 16, 2021
Improper access control vulnerability in updateLastConnectedClientInfo function of... Low Unreviewed
CVE-2022-30750 was published Jul 13, 2022
Improper access control vulnerability in IpcRxServiceModeBigDataInfo in RIL prior to SMR Nov-2022... Low Unreviewed
CVE-2022-39886 was published Nov 10, 2022
In Splunk Enterprise versions in the following table, an authenticated user can craft a dashboard... Low Unreviewed
CVE-2022-37438 was published Aug 17, 2022
Improper access control vulnerability in sendDHCPACKBroadcast function of SemWifiApClient prior... Low Unreviewed
CVE-2022-30751 was published Jul 13, 2022
Improper access control vulnerability in sendDHCPACKBroadcast function of SemWifiApClient prior... Low Unreviewed
CVE-2022-30752 was published Jul 13, 2022
Improper access control vulnerability in QuickShare prior to version 13.2.3.5 allows attackers to... Low Unreviewed
CVE-2022-39860 was published Oct 7, 2022
"IBM Robotic Process Automation for Cloud Pak 21.0.1, 21.0.2, 21.0.3, 21.0.4, and 21.0.5 is... Low Unreviewed
CVE-2022-42442 was published Nov 4, 2022
Mattermost fails to honor the ShowEmailAddress setting when constructing a response to the ... Low Unreviewed
CVE-2023-27265 was published Feb 27, 2023
Improper logic in HomeScreen prior to SMR Feb-2023 Release 1 allows physical attacker to access... Low Unreviewed
CVE-2023-21438 was published Feb 9, 2023
Improper access control vulnerabilities in Samsung Cloud prior to version 5.3.0.32 allows local... Low Unreviewed
CVE-2023-21447 was published Feb 9, 2023
PowerPath Management Appliance with versions 3.3, 3.2*, 3.1 & 3.0* contains sensitive information... Low Unreviewed
CVE-2022-34452 was published Feb 10, 2023
In StatusBar.java, there is a possible disclosure of notification content on the lockscreen due... Low Unreviewed
CVE-2021-39628 was published Jan 15, 2022
In BigBlueButton before 2.2.7, lockSettingsProps.disablePrivateChat does not apply to already... Low Unreviewed
CVE-2020-27601 was published Sep 30, 2022
hw/ppc/spapr.c in QEMU through 3.1.0 allows Information Exposure because the hypervisor shares... Low Unreviewed
CVE-2019-8934 was published May 13, 2022
Sensitive information accessible by physical probing of JTAG interface for some Intel(R)... Low Unreviewed
CVE-2022-0005 was published May 13, 2022
IBM Planning Analytics Local 2.0 allows web pages to be stored locally which can be read by... Low Unreviewed
CVE-2022-22314 was published Sep 9, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database