Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

346 advisories

Loading
Dell EMC NetWorker, 18.x, 19.1.x, 19.2.x 19.3.x, 19.4 and 19.4.0.1, contains an Information... Moderate Unreviewed
CVE-2021-21558 was published May 24, 2022
GitLab CE/EE since version 9.5 allows a high privilege user to obtain sensitive information from... Moderate Unreviewed
CVE-2021-22219 was published May 24, 2022
A flaw was found in the AMQ Broker that discloses JDBC encrypted usernames and passwords when... Moderate Unreviewed
CVE-2021-3425 was published May 24, 2022
BMC Remedy Mid Tier 9.1SP3 is affected by log hijacking. Remote logging can be accessed by... Moderate Unreviewed
CVE-2017-17675 was published May 24, 2022
IBM Spectrum Protect Plus File Systems Agent 10.1.6 and 10.1.7 stores potentially sensitive... Moderate Unreviewed
CVE-2021-20536 was published May 24, 2022
An information exposure through log file vulnerability exists in Palo Alto Networks PAN-OS... Moderate Unreviewed
CVE-2021-3036 was published May 24, 2022
A clear text storage of sensitive information into log file vulnerability in FortiADCManager 5.3... Moderate Unreviewed
CVE-2021-24024 was published May 24, 2022
There is an information leakage vulnerability in some huawei products. Due to the properly... Moderate Unreviewed
CVE-2021-22310 was published May 24, 2022
Under certain conditions, Teradici PCoIP Agents for Windows prior to version 20.10.0 and Teradici... Moderate Unreviewed
CVE-2021-25688 was published May 24, 2022
IBM Cloud Pak for Automation 20.0.3, 20.0.2-IF002 - Business Automation Application Designer... Moderate Unreviewed
CVE-2021-20359 was published May 24, 2022
A vulnerability in the audit logging component of Cisco Unified Communications Manager, Cisco... Moderate Unreviewed
CVE-2021-1226 was published May 24, 2022
Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contain a plain-text... Moderate Unreviewed
CVE-2020-26199 was published May 24, 2022
In onNotificationRemoved of Assistant.java, there is a possible leak of sensitive information to... Moderate Unreviewed
CVE-2020-0476 was published May 24, 2022
IBM Business Automation Workflow 19.0.0.3 stores potentially sensitive information in log files... Moderate Unreviewed
CVE-2020-4900 was published May 24, 2022
An information-disclosure flaw was found in the way that gluster-block before 0.5.1 logs the... Moderate Unreviewed
CVE-2020-10762 was published May 24, 2022
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.2 and 5.2.0.0 through 5.2.6.5... Moderate Unreviewed
CVE-2020-4671 was published May 24, 2022
A log information disclosure vulnerability in B&R GateManager 4260 and 9250 versions <9.0.20262... Moderate Unreviewed
CVE-2020-11646 was published May 24, 2022
An information disclosure vulnerability in B&R GateManager 4260 and 9250 versions <9.0.20262 and... Moderate Unreviewed
CVE-2020-11643 was published May 24, 2022
Brocade Fabric OS versions before Brocade Fabric OS v7.4.2g could allow an authenticated, remote... Moderate Unreviewed
CVE-2020-15370 was published May 24, 2022
In support.c in pam_tacplus 1.3.8 through 1.5.1, the TACACS+ shared secret gets logged via syslog... Moderate Unreviewed
CVE-2020-13881 was published May 24, 2022
In the web-panel in IQrouter through 3.3.1, remote attackers can read system logs because of... Moderate Unreviewed
CVE-2020-11968 was published May 24, 2022
Cloud Foundry Cloud Controller (CAPI), versions prior to 1.91.0, logs properties of background... Moderate Unreviewed
CVE-2020-5400 was published May 24, 2022
Brocade Fabric OS Versions before v7.4.2f, v8.2.2a, v8.1.2j and v8.2.1d could expose external... Moderate Unreviewed
CVE-2019-16204 was published May 24, 2022
Brocade Fabric OS Versions before v8.2.2a and v8.2.1d could expose the credentials of the remote... Moderate Unreviewed
CVE-2019-16203 was published May 24, 2022
A flaw was found in the JBoss EAP Vault system in all versions before 7.2.6.GA. Confidential... Moderate Unreviewed
CVE-2019-14885 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database