Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,226
Erlang
31
GitHub Actions
19
Go
1,991
Maven
5,000+
npm
3,708
NuGet
661
pip
3,341
Pub
11
RubyGems
884
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

72 advisories

Loading
In ArrayMap, there is a possible leak of the content of SMS messages due to log information... Low Unreviewed
CVE-2021-39739 was published Mar 31, 2022
Missing sanitization of logged exception messages in all versions prior to 14.7.7, 14.8 prior to... Low Unreviewed
CVE-2022-1157 was published Apr 12, 2022
Exposure of Sensitive Information in FaqSymptomCardViewModel in Samsung Members prior to versions... Low Unreviewed
CVE-2022-36877 was published Sep 10, 2022
Sensitive information exposure vulnerability in FmmExtraOperation of Find My Mobile prior to 7.2... Low Unreviewed
CVE-2022-30742 was published Jun 8, 2022
Sensitive information exposure vulnerability in SimChangeAlertManger of Find My Mobile prior to 7... Low Unreviewed
CVE-2022-30741 was published Jun 8, 2022
Exposure of Sensitive Information in telephony-common.jar prior to SMR Jul-2022 Release 1 allows... Low Unreviewed
CVE-2022-33687 was published Jul 13, 2022
Sensitive information exposure vulnerability in EventType in SecTelephonyProvider prior to SMR... Low Unreviewed
CVE-2022-33688 was published Jul 13, 2022
Sensitive information exposure vulnerability in ImsServiceSwitchBase in ImsCore prior to SMR Jul... Low Unreviewed
CVE-2022-33697 was published Jul 13, 2022
Exposure of Sensitive Information in CID Manager prior to SMR Jul-2022 Release 1 allows local... Low Unreviewed
CVE-2022-33693 was published Jul 13, 2022
IBM Tivoli Endpoint Manager - Mobile Device Management (MDM) stores potentially sensitive... Low Unreviewed
CVE-2016-0296 was published May 17, 2022
IBM BigFix Remote Control before 9.1.3 allows local users to obtain sensitive information by... Low Unreviewed
CVE-2016-2943 was published May 17, 2022
The authentication mechanism, in Brocade SANnav versions before v2.0, logs plaintext account... Low Unreviewed
CVE-2019-16206 was published May 24, 2022
An internal product security audit of Lenovo XClarity Administrator (LXCA) discovered Windows OS... Low Unreviewed
CVE-2019-19756 was published May 24, 2022
An information exposure vulnerability in the logging component of Palo Alto Networks Global... Low Unreviewed
CVE-2020-1987 was published May 24, 2022
Information Disclosure Vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7... Low Unreviewed
CVE-2020-7322 was published May 24, 2022
An information exposure through log file vulnerability exists where the password for the... Low Unreviewed
CVE-2020-2048 was published May 24, 2022
Information Exposure vulnerability in Samsung Account prior to version 12.1.1.3 allows physically... Low Unreviewed
CVE-2021-25350 was published May 24, 2022
Automox Agent prior to version 31 logs potentially sensitive information in local log files,... Low Unreviewed
CVE-2021-26908 was published May 24, 2022
IBM App Connect Enterprise Certified Container 1.0, 1.1, 1.2, and 1.3 could allow a privileged... Low Unreviewed
CVE-2021-29759 was published May 24, 2022
Dell Wyse ThinOS, version 9.0, contains a Sensitive Information Disclosure Vulnerability. An... Low Unreviewed
CVE-2021-21597 was published May 24, 2022
Dell Wyse ThinOS, versions 9.0, 9.1, and 9.1 MR1, contain a Sensitive Information Disclosure... Low Unreviewed
CVE-2021-21598 was published May 24, 2022
An information exposure through log file vulnerability exists in Palo Alto Networks PAN-OS... Low Unreviewed
CVE-2021-3037 was published May 24, 2022
Sensitive information exposure vulnerability in FmmBaseModel in Galaxy Buds Pro Manage prior to... Low Unreviewed
CVE-2022-39893 was published Nov 10, 2022
The destroy_one_secret function in nm-setting-vpn.c in libnm-util in the NetworkManager package 0... Low Unreviewed
CVE-2011-1943 was published May 13, 2022
The commandline package update tool zypper writes HTTP proxy credentials into its logfile,... Low Unreviewed
CVE-2017-9271 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database