GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,681
NuGet
650
pip
3,298
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
253 advisories
Filter by severity
The conformance validation endpoint is public so everybody can verify the conformance of...
Moderate
Unreviewed
CVE-2024-9802
was published
Oct 10, 2024
A vulnerability in the Cisco Nexus Dashboard Fabric Controller (NDFC) software, formerly Cisco...
Moderate
Unreviewed
CVE-2024-20448
was published
Oct 2, 2024
An issue was discovered in Infinera hiT 7300 5.60.50. Cleartext storage of sensitive information...
Moderate
Unreviewed
CVE-2024-28807
was published
Sep 30, 2024
An issue was discovered in Infinera hiT 7300 5.60.50. Sensitive information inside diagnostic...
Moderate
Unreviewed
CVE-2024-28810
was published
Sep 30, 2024
A flaw was found in oVirt. A user with administrator privileges, including users with the...
Moderate
Unreviewed
CVE-2024-7259
was published
Sep 26, 2024
The configuration file stores credentials in cleartext. An attacker with local access rights can...
Moderate
Unreviewed
CVE-2024-6785
was published
Sep 21, 2024
A vulnerability, which was classified as problematic, was found in code-projects Blood Bank...
Moderate
Unreviewed
CVE-2024-9040
was published
Sep 20, 2024
An issue in Texas Instruments Fusion Digital Power Designer v.7.10.1 allows a local attacker to...
Moderate
Unreviewed
CVE-2024-41629
was published
Sep 12, 2024
A problem with the ActiveMQ integration for both Cortex XSOAR and Cortex XSIAM can result in the...
Moderate
Unreviewed
CVE-2024-8689
was published
Sep 11, 2024
A cleartext storage of sensitive information in memory vulnerability [CWE-316] affecting...
Moderate
Unreviewed
CVE-2024-35282
was published
Sep 10, 2024
In the Linux kernel, the following vulnerability has been resolved:
KEYS: trusted: dcp: fix leak...
Moderate
Unreviewed
CVE-2024-45004
was published
Sep 4, 2024
IBM QRadar Suite Software 1.10.12.0 through 1.10.23.0 and IBM Cloud Pak for Security 1.10.0.0...
Moderate
Unreviewed
CVE-2024-25024
was published
Aug 15, 2024
An information exposure vulnerability in Palo Alto Networks PAN-OS software enables a local...
Moderate
Unreviewed
CVE-2024-5916
was published
Aug 14, 2024
Insecure Permissions vulnerability in Cosy+ devices running a firmware 21.x below 21.2s10 or a...
Moderate
Unreviewed
CVE-2024-33892
was published
Aug 2, 2024
This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to unencrypted storing of WPA...
Moderate
Unreviewed
CVE-2024-41689
was published
Jul 26, 2024
Plaintext vulnerability in the Gallery search module.
Impact: Successful exploitation of this...
Moderate
Unreviewed
CVE-2024-39674
was published
Jul 25, 2024
IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 temporarily stores data from...
Moderate
Unreviewed
CVE-2024-39732
was published
Jul 14, 2024
IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 and IBM QRadar Suite Software 1.10.12.0...
Moderate
Unreviewed
CVE-2024-25023
was published
Jul 10, 2024
A vulnerability in a password management API in Brocade Fabric OS versions before v9.2.1, v9.2.0b...
Moderate
Unreviewed
CVE-2024-29954
was published
Jun 26, 2024
An issue was discovered in Italtel Embrace 1.6.4. The web application inserts cleartext passwords...
Moderate
Unreviewed
CVE-2024-31840
was published
May 21, 2024
A vulnerability has been identified in OPUPI0 AMQP/MQTT (All versions < V5.30). The affected...
Moderate
Unreviewed
CVE-2024-31486
was published
May 14, 2024
An flaw was found in the OpenStack Platform (RHOSP) director, a toolset for installing and...
Moderate
Unreviewed
CVE-2024-4840
was published
May 14, 2024
NETGEAR RAX30 Device Configuration Cleartext Storage Information Disclosure Vulnerability. This...
Moderate
Unreviewed
CVE-2023-27370
was published
May 3, 2024
A vulnerability in Brocade SANnav before v2.3.1 and v2.3.0a prints the Brocade SANnav password in...
Moderate
Unreviewed
CVE-2024-29956
was published
Apr 18, 2024
A vulnerability in Brocade SANnav before v2.3.1 and v2.3.0a could allow an authenticated user to...
Moderate
Unreviewed
CVE-2024-29952
was published
Apr 18, 2024
ProTip!
Advisories are also available from the
GraphQL API