GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,198
Erlang
31
GitHub Actions
19
Go
1,986
Maven
5,000+
npm
3,702
NuGet
660
pip
3,328
Pub
11
RubyGems
883
Rust
843
Swift
36
Unreviewed advisories
All unreviewed
5,000+
303 advisories
Filter by severity
IBM Guardium Data Encryption (GDE) 4.0.0.4 could allow a remote attacker to obtain sensitive...
Moderate
Unreviewed
CVE-2021-20417
was published
May 24, 2022
IBM Cloud Pak for Applications 4.3 could allow a remote attacker to obtain sensitive information...
Moderate
Unreviewed
CVE-2021-20424
was published
May 24, 2022
A vulnerability has been identified in Teamcenter Active Workspace V4 (All versions < V4.3.9),...
Moderate
Unreviewed
CVE-2021-33711
was published
May 24, 2022
IBM Security Verify Access Docker 10.0.0 could allow a remote attacker to obtain sensitive...
Moderate
Unreviewed
CVE-2021-20499
was published
May 24, 2022
IBM Security Verify Access Docker 10.0.0 could allow a remote attacker to obtain sensitive...
Moderate
Unreviewed
CVE-2021-20523
was published
May 24, 2022
IBM i2 Analyst's Notebook Premium (IBM i2 Analyze 4.3.0, 4.3.1, and 4.3.2) could allow a remote...
Moderate
Unreviewed
CVE-2021-20430
was published
May 24, 2022
IBM i2 Analyst's Notebook Premium (IBM i2 Analyze 4.3.0, 4.3.1, and 4.3.2) could allow a remote...
Moderate
Unreviewed
CVE-2021-29766
was published
May 24, 2022
IBM i2 Analyze 4.3.0, 4.3.1, and 4.3.2 could allow a remote attacker to obtain sensitive...
Moderate
Unreviewed
CVE-2021-29784
was published
May 24, 2022
IBM i2 Analyst's Notebook Premium 9.2.0, 9.2.1, and 9.2.2 could allow a remote attacker to obtain...
Moderate
Unreviewed
CVE-2021-29767
was published
May 24, 2022
In SapphireIMS 4097_1, it is possible to guess the registered/active usernames of the software...
High
Unreviewed
CVE-2017-16629
was published
May 24, 2022
A verbose error message in GitLab EE affecting all versions since 12.2 could disclose the private...
Moderate
Unreviewed
CVE-2021-22249
was published
May 24, 2022
In Apache Ofbiz, versions v17.12.01 to v17.12.07 implement a try catch exception to handle errors...
High
Unreviewed
CVE-2021-25958
was published
May 24, 2022
The public share controller in the ownCloud server before version 10.8.0 allows a remote attacker...
Moderate
Unreviewed
CVE-2021-35947
was published
May 24, 2022
IBM Security Secret Server up to 11.0 could allow a remote attacker to obtain sensitive...
Moderate
Unreviewed
CVE-2021-20508
was published
May 24, 2022
IBM Edge 4.2 could reveal sensitive version information about the server from error pages that...
Moderate
Unreviewed
CVE-2020-4941
was published
May 24, 2022
IBM Sterling File Gateway 2.2.0.0 through 6.1.0.3 could allow a remote attacker to obtain...
Moderate
Unreviewed
CVE-2021-20485
was published
May 24, 2022
IBM Security Guardium 11.3 could allow a remote attacker to obtain sensitive information when a...
Moderate
Unreviewed
CVE-2021-20377
was published
May 24, 2022
IBM Sterling File Gateway 6.0.0.0 through 6.1.1.0 could allow a remote attacker to obtain...
Moderate
Unreviewed
CVE-2021-20552
was published
May 24, 2022
/way4acs/enroll in OpenWay WAY4 ACS before 1.2.278-2693 allows unauthenticated attackers to...
Moderate
Unreviewed
CVE-2021-35060
was published
May 24, 2022
In affected versions of Octopus Server it is possible to reveal the existence of resources in a...
Moderate
Unreviewed
CVE-2022-2508
was published
Oct 27, 2022
A vulnerability in the web-based dashboard of Cisco Umbrella could allow an authenticated, remote...
Moderate
Unreviewed
CVE-2021-40126
was published
May 24, 2022
Stimulsoft (aka Stimulsoft Reports) 2013.1.1600.0, when Compilation Mode is used, allows an...
Critical
Unreviewed
CVE-2021-42777
was published
Oct 29, 2022
IBM Tivoli Key Lifecycle Manager 3.0, 3.0.1, 4.0, and 4.1 could allow a remote attacker to obtain...
Moderate
Unreviewed
CVE-2021-38981
was published
May 24, 2022
An information disclosure vulnerability was discovered in glusterfs server. An attacker could...
Moderate
Unreviewed
CVE-2018-10913
was published
Apr 30, 2022
Trend Micro Antivirus for Mac 2020 (Consumer) contains an Error Message Information Disclosure...
Moderate
Unreviewed
CVE-2020-27015
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API