GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,825
Erlang
36
GitHub Actions
32
Go
2,419
Maven
5,000+
npm
4,055
NuGet
723
pip
3,847
Pub
12
RubyGems
934
Rust
1,006
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
22 advisories
Filter by severity
An information disclosure vulnerability exists in HPE AutoPass License Server (APLS) prior to 9.17.
High
Unreviewed
CVE-2024-51770
was published
Jul 14, 2025
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in...
High
Unreviewed
CVE-2025-31045
was published
Jun 9, 2025
The affected products could allow an unauthenticated attacker to access system information that...
High
Unreviewed
CVE-2025-4364
was published
May 20, 2025
Vestel AC Charger
version
3.75.0 contains a vulnerability that
could enable an attacker to...
High
Unreviewed
CVE-2025-3606
was published
Apr 25, 2025
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in...
High
Unreviewed
CVE-2025-26730
was published
Apr 16, 2025
Vulnerability in the Oracle Hospitality Simphony product of Oracle Food and Beverage Applications...
High
Unreviewed
CVE-2025-30686
was published
Apr 15, 2025
Information disclosure of authentication information in the specific service vulnerability exists...
High
Unreviewed
CVE-2025-27934
was published
Apr 9, 2025
Information disclosure while creating MQ channels.
High
Unreviewed
CVE-2024-45549
was published
Apr 7, 2025
An Exposure of Sensitive System Information to an Unauthorized Control Sphere and Initialization...
High
Unreviewed
CVE-2024-8313
was published
Mar 25, 2025
A Local File Inclusion (LFI) vulnerability exists in the /load-workflow endpoint of modelscope...
High
Unreviewed
CVE-2024-8550
was published
Feb 10, 2025
VMware Aria Operations contains an information disclosure vulnerability. A malicious user with...
High
Unreviewed
CVE-2025-22222
was published
Jan 30, 2025
SAP BusinessObjects Business Intelligence Platform allows an unauthenticated attacker to perform...
High
Unreviewed
CVE-2025-0061
was published
Jan 14, 2025
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in...
High
Unreviewed
CVE-2024-54279
was published
Dec 16, 2024
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in...
High
Unreviewed
CVE-2024-50528
was published
Nov 4, 2024
: Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in...
High
Unreviewed
CVE-2024-48024
was published
Oct 17, 2024
A vulnerability has been identified in RUGGEDCOM RMC30 (All versions < V4.3.10), RUGGEDCOM...
High
Unreviewed
CVE-2024-39675
was published
Jul 9, 2024
tine before 2023.11.8, when an LDAP backend is used, allows anonymous remote attackers to obtain...
High
Unreviewed
CVE-2024-36070
was published
May 19, 2024
IBM Security Verify Privilege 11.6.25 could allow an unauthenticated actor to obtain sensitive...
High
Unreviewed
CVE-2024-31887
was published
Apr 17, 2024
Under certain conditions the Microsoft Edge browser extension (SAP GUI connector for Microsoft...
High
Unreviewed
CVE-2024-22125
was published
Jan 9, 2024
Landscape's server-status page exposed sensitive system information. This data leak included GET...
High
Unreviewed
CVE-2023-32550
was published
Jun 6, 2023
Exposure of Sensitive System Information to an Unauthorized Control Sphere in GitHub repository...
High
Unreviewed
CVE-2022-4366
was published
Dec 8, 2022
A flaw was found in the Red Hat Advanced Cluster Security for Kubernetes. Notifier secrets were...
High
Unreviewed
CVE-2022-1902
was published
Sep 2, 2022
ProTip!
Advisories are also available from the
GraphQL API