GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
666
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
170 advisories
Filter by severity
LOYTEC electronics GmbH LINX Configurator 7.4.10 uses HTTP Basic Authentication, which transmits...
High
Unreviewed
CVE-2023-46383
was published
Dec 1, 2023
LOYTEC LINX-212 firmware 6.2.4 and LVIS-3ME12-A1 firmware 6.2.2 and LIOB-586 firmware 6.2.3...
High
Unreviewed
CVE-2023-46380
was published
Nov 5, 2023
LOYTEC LINX-212 firmware 6.2.4 and LVIS-3ME12-A1 firmware 6.2.2 and LIOB-586 firmware 6.2.3...
High
Unreviewed
CVE-2023-46382
was published
Nov 5, 2023
bcrypt password hashing in Botan before 2.1.0 does not correctly handle passwords with a length...
High
Unreviewed
CVE-2017-7252
was published
Nov 3, 2023
The Android Client application, when enrolled with the define method 1 (the user manually...
High
Unreviewed
CVE-2023-45321
was published
Oct 25, 2023
IBM Security Verify Governance 10.0 does not encrypt sensitive or critical information before...
High
Unreviewed
CVE-2023-33837
was published
Oct 23, 2023
IBM Cognos Dashboards on Cloud Pak for Data 4.7.0 exposes sensitive information in environment...
High
Unreviewed
CVE-2023-38276
was published
Oct 22, 2023
IBM Cognos Dashboards on Cloud Pak for Data 4.7.0 exposes sensitive information in container...
High
Unreviewed
CVE-2023-38275
was published
Oct 22, 2023
Baker Hughes – Bently Nevada 3500 System TDI Firmware version 5.05
contains a cleartext...
High
Unreviewed
CVE-2023-34441
was published
Oct 19, 2023
IBM Security Verify Privilege On-Premises 11.5 could disclose sensitive information to an...
High
Unreviewed
CVE-2022-22385
was published
Oct 17, 2023
A flaw was found in Red Hat OpenShift Data Science. When exporting a pipeline from the Elyra...
High
Unreviewed
CVE-2023-3361
was published
Oct 4, 2023
All versions of NetMan 204 could allow an unauthenticated remote attacker to read a file (config...
High
Unreviewed
CVE-2022-47892
was published
Oct 3, 2023
BIG-IP APM clients may send IP traffic outside of the VPN tunnel. Note: Software versions which...
High
Unreviewed
CVE-2023-43125
was published
Sep 27, 2023
BIG-IP APM clients may send IP traffic outside of the VPN tunnel. Note: Software versions which...
High
Unreviewed
CVE-2023-43124
was published
Sep 27, 2023
An issue in CloudExplorer Lite 1.3.1 allows an attacker to obtain sensitive information via the...
High
Unreviewed
CVE-2023-42147
was published
Sep 20, 2023
A flaw was found in OpenStack. Multiple components show plain-text passwords in /var/log/messages...
High
Unreviewed
CVE-2022-3261
was published
Sep 15, 2023
A vulnerability has been identified in QMS Automotive (All versions < V12.39). The affected...
High
Unreviewed
CVE-2023-40729
was published
Sep 14, 2023
An authentication bypass vulnerability exists in the OAS Engine functionality of Open Automation...
High
Unreviewed
CVE-2023-34998
was published
Sep 5, 2023
An issue was discovered in Avira Phantom VPN through 2.23.1 for macOS. The VPN client insecurely...
High
Unreviewed
CVE-2023-36673
was published
Aug 10, 2023
ASUS RT-AC66U B1 3.0.0.4.286_51665 was discovered to transmit sensitive information in cleartext.
High
Unreviewed
CVE-2023-39086
was published
Aug 8, 2023
Cleartext Transmission of Sensitive Information vulnerability in Hitachi Device Manager on...
High
Unreviewed
CVE-2023-34142
was published
Jul 18, 2023
An issue found in Marui Co Marui Official app v.13.6.1 allows a remote attacker to gain access to...
High
Unreviewed
CVE-2023-31823
was published
Jul 13, 2023
Cleartext Transmission of Sensitive Information in the SICK ICR890-4 could allow a
remote...
High
Unreviewed
CVE-2023-3272
was published
Jul 10, 2023
Hitron Technologies CODA-5310’s Telnet function transfers sensitive data in plaintext. An...
High
Unreviewed
CVE-2023-30602
was published
Jul 6, 2023
Mattermost fails to redact from audit logs the user password during user creation and the user...
High
Unreviewed
CVE-2023-1831
was published
Jul 6, 2023
ProTip!
Advisories are also available from the
GraphQL API