GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,170
Erlang
30
GitHub Actions
19
Go
1,981
Maven
5,000+
npm
3,700
NuGet
656
pip
3,319
Pub
11
RubyGems
882
Rust
834
Swift
35
Unreviewed advisories
All unreviewed
5,000+
34 advisories
Filter by severity
Denial of Service in Forescout SecureConnector 11.1.02.1019 on Windows allows Unprivileged user...
Moderate
Unreviewed
CVE-2024-9949
was published
Oct 23, 2024
HCL Sametime is impacted by insecure services in-use on the UIM client by default. An unused...
Moderate
Unreviewed
CVE-2024-30124
was published
Oct 23, 2024
there is a possible arbitrary read due to an insecure default value. This could lead to local...
Moderate
Unreviewed
CVE-2024-44096
was published
Sep 13, 2024
Enabled IP Forwarding feature in B&R Automation Runtime versions before 6.0.2 may allow remote...
Moderate
Unreviewed
CVE-2024-5801
was published
Aug 12, 2024
The EDS-4000/G4000 Series prior to version 3.2 includes IP forwarding capabilities that users...
Moderate
Unreviewed
CVE-2024-0387
was published
Feb 26, 2024
In Liferay Portal 7.2.0 through 7.4.3.25, and older unsupported versions, and Liferay DXP 7.4...
Moderate
Unreviewed
CVE-2024-26267
was published
Feb 20, 2024
Certain configuration available in the communication channel for encoders could expose sensitive...
Moderate
Unreviewed
CVE-2024-22388
was published
Feb 7, 2024
Default swagger-ui configuration exposes all files in the module
Moderate
CVE-2024-22207
was published
for
@fastify/swagger-ui
(npm)
Jan 16, 2024
On an msdosfs filesystem, the 'truncate' or 'ftruncate' system calls under certain circumstances...
Moderate
Unreviewed
CVE-2023-5368
was published
Oct 4, 2023
The File Transfer Protocol (FTP) port is open by default in the SNAP PAC S1 Firmware version R10...
Moderate
Unreviewed
CVE-2023-40708
was published
Aug 24, 2023
Insecure Default Initialization In Liferay Portal
Moderate
CVE-2023-33949
was published
for
com.liferay.portal:release.portal.bom
(Maven)
May 24, 2023
User data exposure in Apache InLong
Moderate
CVE-2023-31101
was published
for
org.apache.inlong:manager-dao
(Maven)
May 22, 2023
An Insecure Default Initialization of Resource vulnerability in Juniper Networks Junos OS Evolved...
Moderate
Unreviewed
CVE-2023-28978
was published
Apr 18, 2023
An insecure default vulnerability exists in the Post Creation functionality of Ghost Foundation...
Moderate
Unreviewed
CVE-2022-47194
was published
Jan 19, 2023
An insecure default vulnerability exists in the Post Creation functionality of Ghost Foundation...
Moderate
Unreviewed
CVE-2022-47196
was published
Jan 19, 2023
In applyKeyguardFlags of NotificationShadeWindowControllerImpl.java, there is a possible way to...
Moderate
Unreviewed
CVE-2022-20466
was published
Dec 13, 2022
In JetBrains TeamCity between 2022.10 and 2022.10.1 connecting to AWS using the "Default...
Moderate
Unreviewed
CVE-2022-46831
was published
Dec 8, 2022
Insecure default variable initialization in BIOS firmware for some Intel(R) NUC Boards and Intel...
Moderate
Unreviewed
CVE-2022-36349
was published
Nov 11, 2022
Apache Isis webconsole module may directly query the database in prototype mode
Moderate
CVE-2022-42467
was published
for
org.apache.isis.core:isis-core
(Maven)
Oct 19, 2022
Dell PowerScale OneFS, versions 9.0.0, up to and including 9.1.0.19, 9.2.1.12, 9.3.0.6, and 9.4.0...
Moderate
Unreviewed
CVE-2022-32480
was published
Aug 23, 2022
Insecure default variable initialization for the Intel BSSA DFT feature may allow a privileged...
Moderate
Unreviewed
CVE-2021-0114
was published
May 24, 2022
Insecure default variable initialization for the Intel BSSA DFT feature may allow a privileged...
Moderate
Unreviewed
CVE-2021-0144
was published
May 24, 2022
An issue was discovered in Svakom Siime Eye 14.1.00000001.3.330.0.0.3.14. By sending a set_params...
Moderate
Unreviewed
CVE-2020-11915
was published
May 24, 2022
Insecure default initialization of resource in Intel(R) Boot Guard in Intel(R) CSME versions...
Moderate
Unreviewed
CVE-2020-8705
was published
May 24, 2022
Insecure default variable initialization in some Intel(R) Thunderbolt(TM) DCH drivers for Windows...
Moderate
Unreviewed
CVE-2020-12327
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API