GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
73 advisories
Filter by severity
In ArrayMap, there is a possible leak of the content of SMS messages due to log information...
Low
Unreviewed
CVE-2021-39739
was published
Mar 31, 2022
Missing sanitization of logged exception messages in all versions prior to 14.7.7, 14.8 prior to...
Low
Unreviewed
CVE-2022-1157
was published
Apr 12, 2022
Exposure of Sensitive Information in FaqSymptomCardViewModel in Samsung Members prior to versions...
Low
Unreviewed
CVE-2022-36877
was published
Sep 10, 2022
Sensitive information exposure vulnerability in FmmExtraOperation of Find My Mobile prior to 7.2...
Low
Unreviewed
CVE-2022-30742
was published
Jun 8, 2022
Sensitive information exposure vulnerability in SimChangeAlertManger of Find My Mobile prior to 7...
Low
Unreviewed
CVE-2022-30741
was published
Jun 8, 2022
Sensitive information exposure vulnerability in EventType in SecTelephonyProvider prior to SMR...
Low
Unreviewed
CVE-2022-33688
was published
Jul 13, 2022
Exposure of Sensitive Information in telephony-common.jar prior to SMR Jul-2022 Release 1 allows...
Low
Unreviewed
CVE-2022-33687
was published
Jul 13, 2022
Sensitive information exposure vulnerability in ImsServiceSwitchBase in ImsCore prior to SMR Jul...
Low
Unreviewed
CVE-2022-33697
was published
Jul 13, 2022
Exposure of Sensitive Information in CID Manager prior to SMR Jul-2022 Release 1 allows local...
Low
Unreviewed
CVE-2022-33693
was published
Jul 13, 2022
IBM Tivoli Endpoint Manager - Mobile Device Management (MDM) stores potentially sensitive...
Low
Unreviewed
CVE-2016-0296
was published
May 17, 2022
IBM BigFix Remote Control before 9.1.3 allows local users to obtain sensitive information by...
Low
Unreviewed
CVE-2016-2943
was published
May 17, 2022
The authentication mechanism, in Brocade SANnav versions before v2.0, logs plaintext account...
Low
Unreviewed
CVE-2019-16206
was published
May 24, 2022
An internal product security audit of Lenovo XClarity Administrator (LXCA) discovered Windows OS...
Low
Unreviewed
CVE-2019-19756
was published
May 24, 2022
An information exposure vulnerability in the logging component of Palo Alto Networks Global...
Low
Unreviewed
CVE-2020-1987
was published
May 24, 2022
Information Disclosure Vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7...
Low
Unreviewed
CVE-2020-7322
was published
May 24, 2022
An information exposure through log file vulnerability exists where the password for the...
Low
Unreviewed
CVE-2020-2048
was published
May 24, 2022
Information Exposure vulnerability in Samsung Account prior to version 12.1.1.3 allows physically...
Low
Unreviewed
CVE-2021-25350
was published
May 24, 2022
Automox Agent prior to version 31 logs potentially sensitive information in local log files,...
Low
Unreviewed
CVE-2021-26908
was published
May 24, 2022
IBM App Connect Enterprise Certified Container 1.0, 1.1, 1.2, and 1.3 could allow a privileged...
Low
Unreviewed
CVE-2021-29759
was published
May 24, 2022
Dell Wyse ThinOS, version 9.0, contains a Sensitive Information Disclosure Vulnerability. An...
Low
Unreviewed
CVE-2021-21597
was published
May 24, 2022
Dell Wyse ThinOS, versions 9.0, 9.1, and 9.1 MR1, contain a Sensitive Information Disclosure...
Low
Unreviewed
CVE-2021-21598
was published
May 24, 2022
An information exposure through log file vulnerability exists in Palo Alto Networks PAN-OS...
Low
Unreviewed
CVE-2021-3037
was published
May 24, 2022
Sensitive information exposure vulnerability in FmmBaseModel in Galaxy Buds Pro Manage prior to...
Low
Unreviewed
CVE-2022-39893
was published
Nov 10, 2022
The destroy_one_secret function in nm-setting-vpn.c in libnm-util in the NetworkManager package 0...
Low
Unreviewed
CVE-2011-1943
was published
May 13, 2022
The commandline package update tool zypper writes HTTP proxy credentials into its logfile,...
Low
Unreviewed
CVE-2017-9271
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API