Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,347
Erlang
31
GitHub Actions
22
Go
2,117
Maven
5,000+
npm
3,768
NuGet
680
pip
3,457
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+

9,047 advisories

Loading
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects RBK50... High Unreviewed
CVE-2021-45651 was published Dec 27, 2021
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects RBK352... High Unreviewed
CVE-2021-45652 was published Dec 27, 2021
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects R7000... High Unreviewed
CVE-2021-45650 was published Dec 27, 2021
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects RBK352... High Unreviewed
CVE-2021-45653 was published Dec 27, 2021
NETGEAR XR1000 devices before 1.0.0.58 are affected by disclosure of sensitive information. High Unreviewed
CVE-2021-45654 was published Dec 27, 2021
A vulnerability in SonicWall SMA100 password change API allows a remote unauthenticated attacker... High Unreviewed
CVE-2021-20049 was published Dec 24, 2021
IBM Cloud Pak for Security (CP4S) 1.7.2.0, 1.7.1.0, and 1.7.0.0 could allow an authenticated user... Moderate Unreviewed
CVE-2021-39013 was published Dec 23, 2021
Dell Wyse Device Agent version 14.5.4.1 and below contain a sensitive data exposure vulnerability... Moderate Unreviewed
CVE-2021-36341 was published Dec 22, 2021
Information Exposure in RunC Moderate
CVE-2016-9962 was published for github.com/opencontainers/runc (Go) Dec 20, 2021
An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37... Moderate Unreviewed
CVE-2021-45038 was published Dec 18, 2021
In geniezone driver, there is a possible out of bounds read due to an incorrect bounds check.... Moderate Unreviewed
CVE-2021-0676 was published Dec 18, 2021
pep_sock_accept in net/phonet/pep.c in the Linux kernel through 5.15.8 has a refcount leak. Moderate Unreviewed
CVE-2021-45095 was published Dec 17, 2021
In createAdminSupportIntent of DevicePolicyManagerService.java, there is a possible way to... Low Unreviewed
CVE-2021-0983 was published Dec 16, 2021
In onCreate of RequestIgnoreBatteryOptimizations.java, there is a possible way to determine... Moderate Unreviewed
CVE-2021-1023 was published Dec 16, 2021
Opencast publishes global system account credentials High
CVE-2018-16153 was published for org.opencastproject:opencast-common (Maven) Dec 14, 2021
gregorydlogan lkiesow
smarquard
The Onion module in toxcore before 0.2.2 doesn't restrict which packets can be onion-routed,... Moderate Unreviewed
CVE-2018-25022 was published Dec 14, 2021
The Like Button Rating ♥ LikeBtn WordPress plugin before 2.6.38 does not have any authorisation... High Unreviewed
CVE-2021-24945 was published Dec 14, 2021
An information disclosure vulnerability in GitLab CE/EE versions 12.0 to 14.3.6, 14.4 to 14.4.4,... Moderate Unreviewed
CVE-2021-39941 was published Dec 14, 2021
IBM Spectrum Protect Operations Center 7.1, under special configurations, could allow a local... Moderate Unreviewed
CVE-2021-38901 was published Dec 14, 2021
An information disclosure vulnerability in the login page of Huntflow Enterprise before 3.10.4... High Unreviewed
CVE-2021-37935 was published Dec 11, 2021
Improper Removal of Sensitive Information Before Storage or Transfer in Apache Jackrabbit Oak High
CVE-2020-1940 was published for org.apache.jackrabbit:oak-core (Maven) Dec 10, 2021
A exposure of sensitive information to an unauthorized actor in Fortinet FortiAuthenticator... Moderate Unreviewed
CVE-2021-43067 was published Dec 9, 2021
An improper access control vulnerability in CPLC prior to SMR Dec-2021 Release 1 allows local... Low Unreviewed
CVE-2021-25519 was published Dec 9, 2021
Instance config inline secret exposure in Grafana Moderate
CVE-2021-41090 was published for github.com/grafana/agent (Go) Dec 8, 2021
There is a Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Huawei... High Unreviewed
CVE-2021-37067 was published Dec 8, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database