Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,313
Erlang
31
GitHub Actions
21
Go
2,072
Maven
5,000+
npm
3,744
NuGet
669
pip
3,433
Pub
12
RubyGems
892
Rust
880
Swift
37
Unreviewed advisories
All unreviewed
5,000+

64 advisories

Loading
SAP BusinessObjects Business Intelligence Platform allows an unauthenticated attacker to perform... High Unreviewed
CVE-2025-0061 was published Jan 14, 2025
Applications based on SAP GUI for HTML in SAP NetWeaver Application Server ABAP store user input... Moderate Unreviewed
CVE-2025-0059 was published Jan 14, 2025
SAP GUI for Java saves user input on the client PC to improve usability. An attacker with... Moderate Unreviewed
CVE-2025-0056 was published Jan 14, 2025
SAP GUI for Windows stores user input on the client PC to improve usability. Under very specific... Moderate Unreviewed
CVE-2025-0055 was published Jan 14, 2025
IBM Security ReaQta 3.12 returns sensitive information in an HTTP response that could be used in... Moderate Unreviewed
CVE-2024-45640 was published Jan 7, 2025
IBM Concert Software 1.0.0, 1.0.1, 1.0.2, 1.0.2.1, and 1.0.3 could disclose sensitive system... Moderate Unreviewed
CVE-2024-52367 was published Jan 7, 2025
Infinix devices contain a pre-loaded "com.rlk.weathers" application, that exposes an unsecured... Moderate Unreviewed
CVE-2024-12993 was published Dec 30, 2024
Multiple SHARP routers contain an improper authentication vulnerability in the configuration... Moderate Unreviewed
CVE-2024-52321 was published Dec 23, 2024
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... High Unreviewed
CVE-2024-54279 was published Dec 16, 2024
IBM InfoSphere DataStage Flow Designer (InfoSphere Information Server 11.7) could allow an... Low Unreviewed
CVE-2023-23472 was published Dec 11, 2024
Under certain conditions SAP BusinessObjects Business Intelligence platform allows an attacker to... Moderate Unreviewed
CVE-2024-32732 was published Dec 10, 2024
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... Moderate Unreviewed
CVE-2024-53814 was published Dec 9, 2024
Synapse Matrix has a partial room state leak via Sliding Sync Moderate
CVE-2024-53867 was published for matrix-synapse (pip) Dec 3, 2024
IBM Cognos Controller 11.0.0 and 11.0.1 exposes server details that could allow an attacker... Moderate Unreviewed
CVE-2024-25035 was published Dec 3, 2024
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in IDE... Moderate Unreviewed
CVE-2024-53768 was published Nov 30, 2024
The uyuni-server-attestation systemd service needs a database_password environment variable. This... Moderate Unreviewed
CVE-2024-22037 was published Nov 28, 2024
An issue has been discovered in GitLab EE affecting all versions starting from 17.3 before 17.3.7... Moderate Unreviewed
CVE-2024-10240 was published Nov 26, 2024
A vulnerability exists in NSD570 that allows any authenticated user to access all device logs... Moderate Unreviewed
CVE-2024-9929 was published Nov 26, 2024
IBM PowerVM Platform KeyStore (IBM PowerVM Hypervisor FW950.00 through FW950.90, FW1030.00... Moderate Unreviewed
CVE-2024-41781 was published Nov 22, 2024
Exposure of sensitive system information to an unauthorized control sphere issue exists in... Moderate Unreviewed
CVE-2024-52033 was published Nov 20, 2024
A vulnerability in the cluster management interface of Cisco SD-WAN vManage Software could... Moderate Unreviewed
CVE-2021-1234 was published Nov 18, 2024
An exposure of sensitive system information to an unauthorized control sphere vulnerability [CWE... Moderate Unreviewed
CVE-2024-36509 was published Nov 12, 2024
Exposure of sensitive system information to an unauthorized control sphere issue exists in Mesh... Low Unreviewed
CVE-2024-47799 was published Nov 12, 2024
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... High Unreviewed
CVE-2024-50528 was published Nov 4, 2024
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... Moderate Unreviewed
CVE-2024-50425 was published Oct 30, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database