Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+

90 advisories

Loading
In cPanel before 66.0.2, domain log files become readable after log processing (SEC-273). Low Unreviewed
CVE-2017-18423 was published May 24, 2022
In the proc filesystem, there is a possible information disclosure due to log information... Low Unreviewed
CVE-2019-9277 was published May 24, 2022
The authentication mechanism, in Brocade SANnav versions before v2.0, logs plaintext account... Low Unreviewed
CVE-2019-16206 was published May 24, 2022
__btrfs_free_extent in fs/btrfs/extent-tree.c in the Linux kernel through 5.3.12 calls... Low Unreviewed
CVE-2019-19039 was published May 24, 2022
An internal product security audit of Lenovo XClarity Administrator (LXCA) discovered Windows OS... Low Unreviewed
CVE-2019-19756 was published May 24, 2022
An information exposure vulnerability in the logging component of Palo Alto Networks Global... Low Unreviewed
CVE-2020-1987 was published May 24, 2022
Information Disclosure Vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7... Low Unreviewed
CVE-2020-7322 was published May 24, 2022
An information exposure through log file vulnerability exists where the password for the... Low Unreviewed
CVE-2020-2048 was published May 24, 2022
Information Exposure vulnerability in Samsung Account prior to version 12.1.1.3 allows physically... Low Unreviewed
CVE-2021-25350 was published May 24, 2022
An information exposure through log file vulnerability exists in Palo Alto Networks PAN-OS... Low Unreviewed
CVE-2021-3037 was published May 24, 2022
Automox Agent prior to version 31 logs potentially sensitive information in local log files,... Low Unreviewed
CVE-2021-26908 was published May 24, 2022
IBM App Connect Enterprise Certified Container 1.0, 1.1, 1.2, and 1.3 could allow a privileged... Low Unreviewed
CVE-2021-29759 was published May 24, 2022
Dell Wyse ThinOS, versions 9.0, 9.1, and 9.1 MR1, contain a Sensitive Information Disclosure... Low Unreviewed
CVE-2021-21598 was published May 24, 2022
Dell Wyse ThinOS, version 9.0, contains a Sensitive Information Disclosure Vulnerability. An... Low Unreviewed
CVE-2021-21597 was published May 24, 2022
Sensitive information exposure vulnerability in SimChangeAlertManger of Find My Mobile prior to 7... Low Unreviewed
CVE-2022-30741 was published Jun 8, 2022
Sensitive information exposure vulnerability in FmmExtraOperation of Find My Mobile prior to 7.2... Low Unreviewed
CVE-2022-30742 was published Jun 8, 2022
Sensitive information exposure vulnerability in EventType in SecTelephonyProvider prior to SMR... Low Unreviewed
CVE-2022-33688 was published Jul 13, 2022
Exposure of Sensitive Information in telephony-common.jar prior to SMR Jul-2022 Release 1 allows... Low Unreviewed
CVE-2022-33687 was published Jul 13, 2022
Exposure of Sensitive Information in CID Manager prior to SMR Jul-2022 Release 1 allows local... Low Unreviewed
CVE-2022-33693 was published Jul 13, 2022
Sensitive information exposure vulnerability in ImsServiceSwitchBase in ImsCore prior to SMR Jul... Low Unreviewed
CVE-2022-33697 was published Jul 13, 2022
Puppet Bolt prior to version 3.24.0 will print sensitive parameters when planning a run resulting... Low Unreviewed
CVE-2022-2394 was published Jul 20, 2022
next-auth before v4.10.2 and v3.29.9 leaks excessive information into log Low
CVE-2022-31186 was published for next-auth (npm) Aug 6, 2022
ShuPink
Exposure of Sensitive Information in FaqSymptomCardViewModel in Samsung Members prior to versions... Low Unreviewed
CVE-2022-36877 was published Sep 10, 2022
Insertion of Sensitive Information into Log in PushRegIdUpdateClient of SReminder prior to 8.2.01... Low Unreviewed
CVE-2022-39876 was published Oct 7, 2022
Sensitive information exposure vulnerability in FmmBaseModel in Galaxy Buds Pro Manage prior to... Low Unreviewed
CVE-2022-39893 was published Nov 10, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database