Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,170
Erlang
30
GitHub Actions
19
Go
1,981
Maven
5,000+
npm
3,700
NuGet
656
pip
3,319
Pub
11
RubyGems
882
Rust
834
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

89 advisories

Loading
In ensureFileColumns of MediaProvider.java, there is a possible disclosure of files owned by... Moderate Unreviewed
CVE-2024-34721 was published Jul 9, 2024
Altai Technologies Ltd Altai IX500 Indoor 22 802.11ac Wave 2 AP After login, there are file reads... Moderate Unreviewed
CVE-2024-51399 was published Nov 1, 2024
An issue in LOGINT LoMag Inventory Management v1.0.20.120 and before allows a local attacker to... Moderate Unreviewed
CVE-2024-32211 was published May 1, 2024
HCL DevOps Deploy / HCL Launch is vulnerable to sensitive information disclosure vulnerability... Moderate Unreviewed
CVE-2024-23561 was published Apr 15, 2024
A vulnerability was found in PAM. The secret information is stored in memory, where the attacker... Moderate Unreviewed
CVE-2024-10041 was published Oct 23, 2024
OvalEdge 5.2.8.0 and earlier is affected by a Sensitive Data Exposure vulnerability via a GET... Moderate Unreviewed
CVE-2022-30359 was published Oct 25, 2024
A vulnerability in the web-based management interface of Cisco ATA 190 Series Multiplatform... Moderate Unreviewed
CVE-2024-20462 was published Oct 16, 2024
An issue existed in the parsing of URLs. This issue was addressed with improved input validation.... Moderate Unreviewed
CVE-2024-44213 was published Oct 28, 2024
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Moderate Unreviewed
CVE-2024-23229 was published May 14, 2024
A hidden interface in Motorola CX2L Router firmware v1.0.1 leaks information regarding the... Moderate Unreviewed
CVE-2024-25360 was published Feb 12, 2024
When browsing private tabs, some data related to location history or webpage thumbnails could be... Moderate Unreviewed
CVE-2024-38312 was published Jun 13, 2024
An issue in Huizhi enterprise resource management system v.1.0 and before allows a local attacker... Moderate Unreviewed
CVE-2024-42677 was published Aug 15, 2024
In flashc, there is a possible information disclosure due to an uncaught exception. This could... Moderate Unreviewed
CVE-2024-20050 was published Apr 1, 2024
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS... Moderate Unreviewed
CVE-2024-44175 was published Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15. An... Moderate Unreviewed
CVE-2024-44174 was published Oct 28, 2024
A lock screen issue was addressed with improved state management. This issue is fixed in watchOS... Moderate Unreviewed
CVE-2024-40813 was published Jul 30, 2024
OvalEdge 5.2.8.0 and earlier is affected by a Sensitive Data Exposure vulnerability via a GET... Moderate Unreviewed
CVE-2022-30361 was published Oct 25, 2024
HCL Launch could disclose sensitive information if a manual edit of a configuration file has been... Moderate Unreviewed
CVE-2023-23348 was published Jul 10, 2023
An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS... Moderate Unreviewed
CVE-2024-44216 was published Oct 29, 2024
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Moderate Unreviewed
CVE-2024-44257 was published Oct 29, 2024
A logic issue was addressed with improved state management. This issue is fixed in iOS 18.1 and... Moderate Unreviewed
CVE-2024-44263 was published Oct 28, 2024
A vulnerability in Veeam ONE allows a user with the Veeam ONE Read-Only User role to view the... Moderate Unreviewed
CVE-2023-41723 was published Nov 14, 2023
vCenter Server contains a partial information disclosure vulnerability. A malicious actor with... Moderate Unreviewed
CVE-2023-34056 was published Oct 25, 2023
Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator... Moderate Unreviewed
CVE-2023-37439 was published Aug 22, 2023
Vulnerability in the Oracle Installed Base product of Oracle E-Business Suite (component: User... Moderate Unreviewed
CVE-2024-21258 was published Oct 15, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database