GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
31 advisories
Filter by severity
Vulnerability of residual files not being deleted after an update in the ChinaDRM module....
High
Unreviewed
CVE-2021-46813
was published
Jun 14, 2022
Exposure of sensitive system information due to uncleared debug information in firmware for some...
Moderate
Unreviewed
CVE-2021-33080
was published
May 13, 2022
Sensitive information in resource not removed before reuse in firmware for some Intel(R) SSD and...
Moderate
Unreviewed
CVE-2021-33082
was published
May 13, 2022
An issue was discovered in xenoprof in Xen through 4.13.x, allowing guest OS users (without...
Low
Unreviewed
CVE-2020-11740
was published
May 24, 2022
An issue was discovered in Varnish Cache before 6.0.5 LTS, 6.1.x and 6.2.x before 6.2.2, and 6.3...
Moderate
Unreviewed
CVE-2019-20637
was published
May 24, 2022
Broker Protocol messages in Teradici PCoIP Standard Agent for Windows and Graphics Agent for...
Low
Unreviewed
CVE-2020-13179
was published
May 24, 2022
Improper removal of sensitive information before storage or transfer in some Intel(R) Processors...
Moderate
Unreviewed
CVE-2020-8696
was published
May 24, 2022
Some websites have a feature "Show Password" where clicking a button will change a password field...
Moderate
Unreviewed
CVE-2020-26965
was published
May 24, 2022
In parseNextBox of IsoInterface.java, there is a possible leak of unredacted location information...
High
Unreviewed
CVE-2021-0340
was published
May 24, 2022
In app/Model/MispObject.php in MISP 2.4.141, an incorrect sharing group association could lead to...
High
Unreviewed
CVE-2021-31780
was published
May 24, 2022
An information disclosure vulnerability was found in libvirt in versions before 6.3.0. HTTP...
High
Unreviewed
CVE-2020-14301
was published
May 24, 2022
Padding bytes in Ethernet packets on PA-200, PA-220, PA-500, PA-800, PA-2000 Series, PA-3000...
Moderate
Unreviewed
CVE-2021-3031
was published
May 24, 2022
A vulnerability was discovered in oVirt 4.1.x before 4.1.9, where the combination of Enable...
Moderate
Unreviewed
CVE-2018-1062
was published
May 13, 2022
An issue was discovered in Mbed TLS before 2.24.0 (and before 2.16.8 LTS and before 2.7.17 LTS)....
High
Unreviewed
CVE-2020-36476
was published
May 24, 2022
A flaw that boot CPU could be vulnerable for the speculative execution behavior kind of attacks...
Moderate
Unreviewed
CVE-2023-1637
was published
Mar 28, 2023
Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository polonel/trudesk...
Moderate
Unreviewed
CVE-2022-1893
was published
Jun 1, 2022
A flaw was found in the Linux kernel. The existing KVM SEV API has a vulnerability that allows a...
Moderate
Unreviewed
CVE-2022-0171
was published
Aug 27, 2022
Sensitive information uncleared after debug/power state transition in the Controller 6000 could...
Low
Unreviewed
CVE-2023-41967
was published
Dec 19, 2023
AMD microprocessor families 15h to 18h are affected by a new Spectre variant that is able to...
Moderate
Unreviewed
CVE-2022-29900
was published
Jul 13, 2022
The Network Address Translation (NAT) capability for Netfilter ("iptables") 1.2.6a and earlier...
Moderate
Unreviewed
CVE-2002-0704
was published
Apr 30, 2022
A design flaw in image processing software that modifies JPEG images might not modify the...
Low
Unreviewed
CVE-2005-0406
was published
May 1, 2022
In Kubernetes v1.12.0-v1.12.4 and v1.13.0, the rest.AnonymousClientConfig() method returns a copy...
High
Unreviewed
CVE-2019-11243
was published
May 24, 2022
An issue was discovered in the Chat functionality of the TeamViewer desktop application 14.3.4730...
Moderate
Unreviewed
CVE-2019-19362
was published
May 24, 2022
A known cache speculation vulnerability, known as Branch History Injection (BHI) or Spectre-BHB,...
Moderate
Unreviewed
CVE-2023-3006
was published
May 31, 2023
An improper removal of sensitive information before storage or transfer vulnerability [CWE-212]...
Moderate
Unreviewed
CVE-2024-31493
was published
Jun 3, 2024
ProTip!
Advisories are also available from the
GraphQL API