GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
56 advisories
Filter by severity
The vulnerability is to theft of arbitrary files with system privilege in the Screen recording (...
Low
Unreviewed
CVE-2023-44124
was published
Sep 27, 2023
The issue was addressed with improved checks. This issue is fixed in iOS 16.5 and iPadOS 16.5,...
Low
Unreviewed
CVE-2023-32394
was published
Jun 23, 2023
Dell Networking OS10 versions 10.4.3.x, 10.5.0.x and 10.5.1.x contain an information exposure...
Low
Unreviewed
CVE-2021-36319
was published
Nov 21, 2021
IBM PowerSC 1.3, 2.0, and 2.1 may allow a remote attacker to view session identifiers passed via...
Low
Unreviewed
CVE-2023-50328
was published
Feb 2, 2024
In Amanda 3.5.1, an information leak vulnerability was found in the calcsize SUID binary. An...
Low
Unreviewed
CVE-2022-37703
was published
Sep 14, 2022
A vulnerability has been identified in PT-G503 Series versions prior to v5.2, where the session...
Low
Unreviewed
CVE-2023-4217
was published
Nov 2, 2023
Authenticated clients can read arbitrary files on the MAIN Computer
system using the remote...
Low
Unreviewed
CVE-2023-2622
was published
Nov 1, 2023
lxc-user-nic in lxc through 5.0.1 is installed setuid root, and may allow local users to infer...
Low
Unreviewed
CVE-2022-47952
was published
Jan 1, 2023
In getSerialForPackage of DeviceIdentifiersPolicyService.java, there is a possible way to...
Low
Unreviewed
CVE-2021-0978
was published
Dec 16, 2021
Improper access control vulnerability in updateLastConnectedClientInfo function of...
Low
Unreviewed
CVE-2022-30750
was published
Jul 13, 2022
Improper access control vulnerability in IpcRxServiceModeBigDataInfo in RIL prior to SMR Nov-2022...
Low
Unreviewed
CVE-2022-39886
was published
Nov 10, 2022
In Splunk Enterprise versions in the following table, an authenticated user can craft a dashboard...
Low
Unreviewed
CVE-2022-37438
was published
Aug 17, 2022
Improper access control vulnerability in sendDHCPACKBroadcast function of SemWifiApClient prior...
Low
Unreviewed
CVE-2022-30751
was published
Jul 13, 2022
Improper access control vulnerability in sendDHCPACKBroadcast function of SemWifiApClient prior...
Low
Unreviewed
CVE-2022-30752
was published
Jul 13, 2022
Improper access control vulnerability in QuickShare prior to version 13.2.3.5 allows attackers to...
Low
Unreviewed
CVE-2022-39860
was published
Oct 7, 2022
"IBM Robotic Process Automation for Cloud Pak 21.0.1, 21.0.2, 21.0.3, 21.0.4, and 21.0.5 is...
Low
Unreviewed
CVE-2022-42442
was published
Nov 4, 2022
Mattermost fails to honor the ShowEmailAddress setting when constructing a response to the ...
Low
Unreviewed
CVE-2023-27265
was published
Feb 27, 2023
Improper logic in HomeScreen prior to SMR Feb-2023 Release 1 allows physical attacker to access...
Low
Unreviewed
CVE-2023-21438
was published
Feb 9, 2023
PowerPath Management Appliance with versions 3.3, 3.2*, 3.1 & 3.0* contains sensitive information...
Low
Unreviewed
CVE-2022-34452
was published
Feb 10, 2023
Improper access control vulnerabilities in Samsung Cloud prior to version 5.3.0.32 allows local...
Low
Unreviewed
CVE-2023-21447
was published
Feb 9, 2023
In StatusBar.java, there is a possible disclosure of notification content on the lockscreen due...
Low
Unreviewed
CVE-2021-39628
was published
Jan 15, 2022
In BigBlueButton before 2.2.7, lockSettingsProps.disablePrivateChat does not apply to already...
Low
Unreviewed
CVE-2020-27601
was published
Sep 30, 2022
hw/ppc/spapr.c in QEMU through 3.1.0 allows Information Exposure because the hypervisor shares...
Low
Unreviewed
CVE-2019-8934
was published
May 13, 2022
Sensitive information accessible by physical probing of JTAG interface for some Intel(R)...
Low
Unreviewed
CVE-2022-0005
was published
May 13, 2022
IBM Planning Analytics Local 2.0 allows web pages to be stored locally which can be read by...
Low
Unreviewed
CVE-2022-22314
was published
Sep 9, 2022
ProTip!
Advisories are also available from the
GraphQL API