GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,740
Composer 4,239
Erlang 31
GitHub Actions 21
Go 2,007
Maven 5,196
npm 3,716
NuGet 662
pip 3,388
Pub 11
RubyGems 885
Rust 851
Swift 36

Unreviewed advisories

All unreviewed 235,795

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

189 advisories

Filter by severity

Sort by

Least recently updated

Insecure storage of device information in Contacts prior to version 12.7.05.24 allows attacker to... Low Unreviewed

CVE-2021-25524 was published Dec 9, 2021

Insecure storage of sensitive information vulnerability in Smart Capture prior to version 4.8.02... Low Unreviewed

CVE-2021-25522 was published Dec 9, 2021

Insecure storage of device information in Samsung Dialer prior to version 12.7.05.24 allows... Low Unreviewed

CVE-2021-25523 was published Dec 9, 2021

The SyncThru Web Service on Samsung SCX-6x55X printers allows an attacker to gain access to a... High Unreviewed

CVE-2021-42913 was published Dec 21, 2021

An issue existed in the storage of sensitive tokens. This issue was addressed by placing the... Moderate Unreviewed

CVE-2017-13909 was published Dec 24, 2021

A insecure storage of sensitive information vulnerability exists in Ivanti Workspace Control ... Moderate Unreviewed

CVE-2022-21823 was published Jan 11, 2022

In JetBrains TeamCity before 2021.2.3, environment variables of the "password" type could be... High Unreviewed

CVE-2022-25264 was published Feb 26, 2022

Insecure Storage of Sensitive Information in GitHub repository chocobozzz/peertube prior to 4.1.1. Moderate Unreviewed

CVE-2022-0881 was published Mar 10, 2022

Philips Gemini PET/CT family software stores sensitive information in a removable media device... Low Unreviewed

CVE-2021-27456 was published Mar 24, 2022

Insecure storage of sensitive information vulnerability in MA for Linux, macOS, and Windows prior... Moderate Unreviewed

CVE-2022-1257 was published Apr 15, 2022

An insecure data storage vulnerability allows a physical attacker with root privileges to... Low Unreviewed

CVE-2021-25266 was published Apr 28, 2022

Sensitive Data Exposure Due To Insecure Storage Of Profile Image in GitHub repository polonel... Moderate Unreviewed

CVE-2022-1044 was published May 13, 2022

An information disclosure vulnerability in File-Based Encryption could enable a local malicious... Moderate Unreviewed

CVE-2017-0493 was published May 13, 2022

SanDisk Secure Access 3.01 vault decrypts and copies encrypted files to a temporary folder, where... Moderate Unreviewed

CVE-2017-16560 was published May 13, 2022

USB Pratirodh is prone to sensitive information disclosure. It stores sensitive information such... Moderate Unreviewed

CVE-2017-6911 was published May 13, 2022

Dahua IP Camera devices 3.200.0001.6 can be exploited via these steps: 1. Use the default low... High Unreviewed

CVE-2017-7253 was published May 13, 2022

SUSE Manager until version 4.0.7 and Uyuni until commit 1b426ad5ed0a7191a6fb46bb83e98ae4b99a5ade... Moderate Unreviewed

CVE-2019-3684 was published May 24, 2022

The iOS mobile application BlueCats Reveal before 5.14 stores the username and password in the... High Unreviewed

CVE-2019-5627 was published May 24, 2022

The Android mobile application BlueCats Reveal before 3.0.19 stores the username and password in... High Unreviewed

CVE-2019-5626 was published May 24, 2022

An insecure storage of sensitive information vulnerability is present in Hickory Smart for iOS... Moderate Unreviewed

CVE-2019-5633 was published May 24, 2022

In KeyStore, there is a possible storage of symmetric keys in the TEE instead of the strongbox... Moderate Unreviewed

CVE-2019-9253 was published May 24, 2022

The JetBrains Vim plugin before version 0.52 was storing individual project data in the global... Moderate Unreviewed

CVE-2019-14957 was published May 24, 2022

IBM Security Directory Server 6.4.0 discloses sensitive information to unauthorized users. The... Moderate Unreviewed

CVE-2019-4549 was published May 24, 2022

Incorrect security UI in full screen mode in Google Chrome prior to 78.0.3904.70 allowed a remote... Moderate Unreviewed

CVE-2019-13719 was published May 24, 2022

Incorrect security UI in full screen mode in Google Chrome prior to 78.0.3904.70 allowed a remote... Moderate Unreviewed

CVE-2019-13717 was published May 24, 2022

Previous 1 2 3 4 5 6 7 8 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

189 advisories