GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 19,961
Composer 4,055
Erlang 29
GitHub Actions 19
Go 1,889
Maven 5,076
npm 3,605
NuGet 638
pip 3,208
Pub 10
RubyGems 852
Rust 816
Swift 35

Unreviewed advisories

All unreviewed 227,357

CC-BY-4.0 License

Language support

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

5 advisories

Filter by severity

Sort by

Least recently updated

vodozemac has degraded secret zeroization capabilities Low

CVE-2024-34063 was published for vodozemac (Rust) May 3, 2024

ASA-2024-004: Default configuration param for Evidence may limit window of validity Low

GHSA-555p-m4v6-cqxv was published for github.com/cometbft/cometbft (Go) Feb 28, 2024

Temporal Server vulnerable to Incorrect Authorization and Insecure Default Initialization of Resource Low

CVE-2023-3485 was published for go.temporal.io/server (Go) Jun 30, 2023

In WiFi, there is a possible disclosure of WiFi password to the end user due to an insecure... Low Unreviewed

CVE-2022-20342 was published Aug 13, 2022

In processPhonebookAccess of CachedBluetoothDevice.java, there is a possible permission bypass... Low Unreviewed

CVE-2019-2197 was published May 24, 2022

ProTip! Advisories are also available from the GraphQL API

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

5 advisories