GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,155
Composer 4,335
Erlang 31
GitHub Actions 22
Go 2,096
Maven 5,269
npm 3,762
NuGet 678
pip 3,448
Pub 12
RubyGems 892
Rust 882
Swift 37

Unreviewed advisories

All unreviewed 242,818

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

270 advisories

Filter by severity

Sort by

Least recently updated

Cleartext storage of sensitive information exists in SkyBridge MB-A100/110 firmware Ver. 4.2.0... Moderate Unreviewed

CVE-2023-24586 was published May 10, 2023

An issue was discovered in TigerGraph Enterprise Free Edition 3.x. There is logging of user... Moderate Unreviewed

CVE-2023-22949 was published Apr 14, 2023

A vulnerability in Palo Alto Networks PAN-OS software enables an authenticated administrator to... Moderate Unreviewed

CVE-2023-0005 was published Apr 12, 2023

The fix in 4.6.16, 4.7.9, 4.8.4 and 4.9.7 for CVE-2018-10919 Confidential attribute disclosure vi... Moderate Unreviewed

CVE-2023-0614 was published Apr 4, 2023

In Stimulsoft Designer (Desktop) 2023.1.5, and 2023.1.4, once an attacker decompiles the... Moderate Unreviewed

CVE-2023-25263 was published Mar 27, 2023

A vulnerability in the implementation of the Cisco Network Plug-and-Play (PnP) agent of Cisco DNA... Moderate Unreviewed

CVE-2023-20059 was published Mar 23, 2023

A vulnerability exists in ClearPass Policy Manager that allows for an attacker with... Moderate Unreviewed

CVE-2023-25596 was published Mar 22, 2023

An information disclosure vulnerability allows sensitive key material to be included in technical... Moderate Unreviewed

CVE-2022-48310 was published Mar 1, 2023

An issue was discovered in the A4N (Aremis 4 Nomad) application 1.5.0 for Android. It uses a... Moderate Unreviewed

CVE-2022-34910 was published Feb 27, 2023

MV iDigital Clinic Enterprise (iDCE) 1.0 stores passwords in cleartext. Moderate Unreviewed

CVE-2022-31405 was published Feb 27, 2023

IBM InfoSphere Information Server 11.7 could allow a local user to obtain sensitive information... Moderate Unreviewed

CVE-2023-24964 was published Feb 17, 2023

A Cleartext Storage of Sensitive Information vulnerability in suppportutils of SUSE Linux... Moderate Unreviewed

CVE-2022-45154 was published Feb 15, 2023

Dell BIOS contains an information exposure vulnerability. An unauthenticated local attacker with... Moderate Unreviewed

CVE-2022-24410 was published Feb 10, 2023

Dell PowerScale OneFS, 9.0.0.x-9.4.0.x, contain a cleartext storage of sensitive information... Moderate Unreviewed

CVE-2022-45098 was published Feb 1, 2023

On Xerox WorkCentre 3550 25.003.03.000 devices, an authenticated attacker can view the SMB server... Moderate Unreviewed

CVE-2022-45897 was published Jan 31, 2023

Information disclosure vulnerability exists in Pgpool-II 4.4.0 to 4.4.1 (4.4 series), 4.3.0 to 4... Moderate Unreviewed

CVE-2023-22332 was published Jan 30, 2023

** DISPUTED ** KeePass through 2.53 (in a default installation) allows an attacker, who has write... Moderate Unreviewed

CVE-2023-24055 was published Jan 22, 2023

A pair of spare WiFi credentials is stored in the configuration file of the Zyxel AX7501-B0... Moderate Unreviewed

CVE-2022-45439 was published Jan 17, 2023

NVIDIA BMC stores user passwords in an obfuscated form in a database accessible by the host. This... Moderate Unreviewed

CVE-2022-42284 was published Jan 13, 2023

IBM Security Verify Governance 10.0 stores user credentials in plain clear text which can be read... Moderate Unreviewed

CVE-2022-22470 was published Jan 9, 2023

IBM Robotic Process Automation 20.12 through 21.0.6 could allow an attacker with physical access... Moderate Unreviewed

CVE-2022-41740 was published Jan 5, 2023

Certain General Electric Renewable Energy products store cleartext credentials in flash memory.... Moderate Unreviewed

CVE-2022-24120 was published Dec 26, 2022

IBM Security Verify Governance, Identity Manager 10.0.1 stores sensitive information including... Moderate Unreviewed

CVE-2022-22457 was published Dec 23, 2022

Sensitive information was stored in plain text in a file that is accessible by a user with a... Moderate Unreviewed

CVE-2022-47512 was published Dec 19, 2022

The vCenter Server contains an information disclosure vulnerability due to the logging of... Moderate Unreviewed

CVE-2022-31697 was published Dec 13, 2022

Previous 1 2 3 4 5 6 … 10 11 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

270 advisories