Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,737
Maven
5,000+
npm
4,337
NuGet
764
pip
4,112
Pub
12
RubyGems
960
Rust
1,068
Swift
45
Unreviewed advisories
All unreviewed
5,000+

931 advisories

Loading
** DISPUTED ** An issue was discovered in SecurEnvoy SecurAccess 9.3.502. When put in Debug mode... High Unreviewed
CVE-2018-18466 was published May 13, 2022
In System Management Module (SMM) versions prior to 1.06, the SMM records hashed passwords to a... Moderate Unreviewed
CVE-2018-16095 was published May 13, 2022
Cloud Foundry NFS volume release, 1.2.x prior to 1.2.5, 1.5.x prior to 1.5.4, 1.7.x prior to 1.7... High Unreviewed
CVE-2018-15797 was published May 13, 2022
A sensitive data disclosure flaw was found in the Elasticsearch repository-azure (formerly... High Unreviewed
CVE-2018-3827 was published May 13, 2022
A password management issue exists where the Organization authentication username and password... High Unreviewed
CVE-2019-0032 was published May 13, 2022
On Juniper ATP, the API key and the device key are logged in a file readable by authenticated... Moderate Unreviewed
CVE-2019-0004 was published May 13, 2022
A sensitive data disclosure flaw was found in the way Logstash versions before 5.6.15 and 6.6.1... Critical Unreviewed
CVE-2019-7612 was published May 13, 2022
It was discovered that a world-readable log file belonging to Candlepin component of Red Hat... High Unreviewed
CVE-2019-3891 was published May 13, 2022
(1) impl_db2.py and (2) impl_mongodb.py in OpenStack Ceilometer 2013.2 and earlier, when the... Low Unreviewed
CVE-2013-6384 was published May 13, 2022
Ceilometer Prints Sensitive Configuration Data to Log Moderate
CVE-2019-3830 was published for ceilometer (pip) May 13, 2022
The commandline package update tool zypper writes HTTP proxy credentials into its logfile,... Low Unreviewed
CVE-2017-9271 was published May 13, 2022
Micro Focus Solutions Business Manager versions prior to 11.4 might reveal certain sensitive... High Unreviewed
CVE-2018-7683 was published May 13, 2022
Micro Focus Solutions Business Manager versions prior to 11.4 allows a user to invoke SBM RESTful... Moderate Unreviewed
CVE-2018-7682 was published May 13, 2022
An issue was discovered in Cloud Foundry Foundation cf-release versions prior to v250 and CAPI... High Unreviewed
CVE-2016-9882 was published May 13, 2022
An Information Exposure issue in the Terraform deployment step in Octopus Deploy before 2019.1.8 ... Moderate Unreviewed
CVE-2019-8944 was published May 13, 2022
Openstack Octavia allows Insertion of Sensitive Information into Log File High
CVE-2018-16856 was published for octavia (pip) May 13, 2022
Ansible Insertion of Sensitive Information into Log File vulnerability Critical
CVE-2017-7550 was published for ansible (pip) May 13, 2022
The destroy_one_secret function in nm-setting-vpn.c in libnm-util in the NetworkManager package 0... Low Unreviewed
CVE-2011-1943 was published May 13, 2022
aria2c in aria2 1.33.1, when --log is used, can store an HTTP Basic Authentication username and... High Unreviewed
CVE-2019-3500 was published May 13, 2022
Moxa Secure Router EDR-G903 devices before 3.4.12 do not delete copies of configuration and log... High Unreviewed
CVE-2016-0879 was published May 13, 2022
Moxa Secure Router EDR-G903 devices before 3.4.12 allow remote attackers to read configuration... High Unreviewed
CVE-2016-0875 was published May 13, 2022
In JetBrains TeamCity before 2022.04 leak of secrets in TeamCity agent logs was possible Moderate Unreviewed
CVE-2022-29928 was published May 13, 2022
Under certain conditions, the SAP Host Agent logfile shows information which would otherwise be... Moderate Unreviewed
CVE-2022-28774 was published May 12, 2022
An information exposure through log file vulnerability in Brocade SANNav versions before Brocade... Moderate Unreviewed
CVE-2022-28161 was published May 10, 2022
On F5 BIG-IP APM 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x... Moderate Unreviewed
CVE-2022-27636 was published May 6, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database