Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
41
Go
3,026
Maven
5,000+
npm
4,763
NuGet
824
pip
4,366
Pub
12
RubyGems
987
Rust
1,143
Swift
50
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

43 advisories

Loading
Incomplete removal of sensitive information before transfer vulnerability in M-Files Corporation... Moderate Unreviewed
CVE-2025-14267 was published Dec 19, 2025
A flaw was found in QEMU in the uefi-vars virtual device. When the guest writes to register... Low Unreviewed
CVE-2025-8860 was published Feb 18, 2026
SSH private keys of the "Remote alert handlers (Linux)" rule were exposed in the rule page's HTML... Low Unreviewed
CVE-2025-65000 was published Dec 18, 2025
Improper removal of sensitive information in certain Zoom Clients before version 6.5.10 may allow... Moderate Unreviewed
CVE-2025-62483 was published Nov 13, 2025
In the Linux kernel, the following vulnerability has been resolved: net: ethernet: lantiq_etop:... High Unreviewed
CVE-2024-49997 was published Oct 21, 2024
Improper removal of sensitive information before storage or transfer in AMD Crash Defender could... Low Unreviewed
CVE-2025-0011 was published Sep 6, 2025
IBM MQ Operator LTS 2.0.0 through 2.0.29, MQ Operator CD 3.0.0, 3.0.1, 3.1.0 through 3.1.3, 3.3.0... Moderate Unreviewed
CVE-2025-33013 was published Jul 25, 2025
A low privileged remote attacker can get access to CSRF tokens of higher privileged users which... Moderate Unreviewed
CVE-2024-7698 was published Sep 10, 2024
IBM Concert Software 1.0.0 through 1.1.0 could allow a remote attacker to obtain sensitive... Moderate Unreviewed
CVE-2025-1759 was published Aug 18, 2025
gs_lib_ctx_stash_sanitized_arg in base/gslibctx.c in Artifex Ghostscript through 10.05.0 lacks... Low Unreviewed
CVE-2025-48708 was published May 23, 2025
folly::secureRandom will re-use a buffer between parent and child processes when fork() is called... High Unreviewed
CVE-2018-6337 was published May 13, 2022
In affected versions of Octopus Deploy it is possible for certain types of sensitive variables to... High Unreviewed
CVE-2022-3460 was published Jan 3, 2023
A vulnerability in the implementation of the internal system processes of Cisco APIC could allow... Moderate Unreviewed
CVE-2025-20118 was published Feb 26, 2025
A flaw that boot CPU could be vulnerable for the speculative execution behavior kind of attacks... Moderate Unreviewed
CVE-2023-1637 was published Mar 28, 2023
OpenVPN Connect before version 3.5.0 can contain the configuration profile's clear-text private... High Unreviewed
CVE-2024-8474 was published Jan 6, 2025
In JetBrains TeamCity before 2024.12 backup file exposed user credentials and session cookies Moderate Unreviewed
CVE-2024-56353 was published Dec 20, 2024
Improper removal of sensitive information in data source export feature in Devolutions Remote... Moderate Unreviewed
CVE-2024-6055 was published Jun 17, 2024
Profile files from TRO600 series radios are extracted in plain-text and encrypted file formats.... Low Unreviewed
CVE-2024-41156 was published Oct 29, 2024
Information management vulnerability in the Gallery module.Successful exploitation of this... High Unreviewed
CVE-2023-52376 was published Feb 18, 2024
Windows Kernel-Mode Driver Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-43554 was published Oct 8, 2024
An improper removal of sensitive information before storage or transfer vulnerability [CWE-212]... Moderate Unreviewed
CVE-2024-31493 was published Jun 3, 2024
A known cache speculation vulnerability, known as Branch History Injection (BHI) or Spectre-BHB,... Moderate Unreviewed
CVE-2023-3006 was published May 31, 2023
An issue was discovered in the Chat functionality of the TeamViewer desktop application 14.3.4730... Moderate Unreviewed
CVE-2019-19362 was published May 24, 2022
A design flaw in image processing software that modifies JPEG images might not modify the... Low Unreviewed
CVE-2005-0406 was published May 1, 2022
The Network Address Translation (NAT) capability for Netfilter ("iptables") 1.2.6a and earlier... Moderate Unreviewed
CVE-2002-0704 was published Apr 30, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database