Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,631
NuGet
638
pip
3,246
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

506 advisories

Loading
BIG-IP APM clients may send IP traffic outside of the VPN tunnel.  Note: Software versions which... High Unreviewed
CVE-2023-43125 was published Sep 27, 2023
BIG-IP APM clients may send IP traffic outside of the VPN tunnel.  Note: Software versions which... High Unreviewed
CVE-2023-43124 was published Sep 27, 2023
An issue in CloudExplorer Lite 1.3.1 allows an attacker to obtain sensitive information via the... High Unreviewed
CVE-2023-42147 was published Sep 20, 2023
** UNSUPPPORTED WHEN ASSIGNED ** The lack of web request control on ekorCCP and ekorRCI devices... Moderate Unreviewed
CVE-2022-47560 was published Sep 20, 2023
A flaw was found in OpenStack. Multiple components show plain-text passwords in /var/log/messages... High Unreviewed
CVE-2022-3261 was published Sep 15, 2023
A vulnerability has been identified in QMS Automotive (All versions < V12.39). The affected... High Unreviewed
CVE-2023-40729 was published Sep 14, 2023
Keycloak vulnerable to Plaintext Storage of User Password High
CVE-2023-4918 was published for org.keycloak:keycloak-core (Maven) Sep 12, 2023
dasniko lme-atolcd
An authentication bypass vulnerability exists in the OAS Engine functionality of Open Automation... High Unreviewed
CVE-2023-34998 was published Sep 5, 2023
IBM Aspera Faspex 5.0.5 transmits sensitive information in cleartext which could be obtained by... Moderate Unreviewed
CVE-2023-22870 was published Sep 5, 2023
ArcGIS Enterprise Server versions 11.0 and below have an information disclosure... Moderate Unreviewed
CVE-2023-25848 was published Aug 25, 2023
A cleartext transmission of sensitive information vulnerability has been reported to affect QNAP... Moderate Unreviewed
CVE-2023-34972 was published Aug 24, 2023
An issue was discovered in the Clario VPN client through 5.9.1.1662 for macOS. The VPN client... Moderate Unreviewed
CVE-2023-36672 was published Aug 10, 2023
An issue was discovered in Avira Phantom VPN through 2.23.1 for macOS. The VPN client insecurely... High Unreviewed
CVE-2023-36673 was published Aug 10, 2023
An issue was discovered in the Clario VPN client through 5.9.1.1662 for macOS. The VPN client... Moderate Unreviewed
CVE-2023-36671 was published Aug 10, 2023
ASUS RT-AC66U B1 3.0.0.4.286_51665 was discovered to transmit sensitive information in cleartext. High Unreviewed
CVE-2023-39086 was published Aug 8, 2023
A vulnerability was found in Intergard SGS 8.7.0. It has been declared as problematic. This... Low Unreviewed
CVE-2023-3763 was published Jul 19, 2023
A vulnerability was found in Intergard SGS 8.7.0 and classified as problematic. Affected by this... Low Unreviewed
CVE-2023-3761 was published Jul 19, 2023
Cleartext Transmission of Sensitive Information vulnerability in Hitachi Device Manager on... High Unreviewed
CVE-2023-34142 was published Jul 18, 2023
An insecure connection between Systems Manager and CQI Reporter application could expose infusion... Low Unreviewed
CVE-2023-30565 was published Jul 13, 2023
An issue was discovered in YSoft SAFEQ 6 Server before 6.0.82. When modifying the URL of the LDAP... Moderate Unreviewed
CVE-2023-35833 was published Jul 13, 2023
An issue found in Marui Co Marui Official app v.13.6.1 allows a remote attacker to gain access to... High Unreviewed
CVE-2023-31823 was published Jul 13, 2023
Cleartext Transmission of Sensitive Information in the SICK ICR890-4 could allow a remote... High Unreviewed
CVE-2023-3272 was published Jul 10, 2023
Mattermost fails to redact from audit logs the user password during user creation and the user... High Unreviewed
CVE-2023-1831 was published Jul 6, 2023
SAUTER Controls Nova 200–220 Series with firmware version 3.3-006 and prior and BACnetstac... High Unreviewed
CVE-2023-0053 was published Jul 6, 2023
The physical IoT device of the AliveCor's KardiaMobile, a smartphone-based personal... High Unreviewed
CVE-2022-41627 was published Jul 6, 2023
ProTip! Advisories are also available from the GraphQL API