Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,218
Erlang
31
GitHub Actions
19
Go
1,988
Maven
5,000+
npm
3,704
NuGet
661
pip
3,332
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

339 advisories

Loading
A privacy issue was addressed with improved private data redaction for log entries. This issue is... Moderate Unreviewed
CVE-2023-41254 was published Oct 25, 2023
Mattermost Desktop fails to set an appropriate log level during initial run after fresh... Moderate Unreviewed
CVE-2023-5339 was published Oct 17, 2023
IBM App Connect Enterprise 12.0.1.0 through 12.0.8.0 contains an unspecified vulnerability that... Moderate Unreviewed
CVE-2023-40682 was published Oct 13, 2023
An insertion of sensitive information into log file vulnerability in Fortinet FortiGuest 1.0.0... Moderate Unreviewed
CVE-2023-25604 was published Oct 10, 2023
When TACACS+ audit forwarding is configured on BIG-IP or BIG-IQ system, sharedsecret is logged... Moderate Unreviewed
CVE-2023-43485 was published Oct 10, 2023
When on BIG-IP DNS or BIG-IP LTM enabled with DNS Services License, and a TSIG key is created,... Moderate Unreviewed
CVE-2023-41253 was published Oct 10, 2023
When BIG-IP APM Guided Configurations are configured, undisclosed sensitive information may be... Moderate Unreviewed
CVE-2023-39447 was published Oct 10, 2023
Sensitive data could be exposed in logs of subiquity version 23.09.1 and earlier. An attacker in... Moderate Unreviewed
CVE-2023-5182 was published Oct 7, 2023
Sensitive information leak through log files. The following products are affected: Acronis Agent ... Moderate Unreviewed
CVE-2023-45241 was published Oct 6, 2023
A logic flaw exists in Ansible. Whenever a private project is created with incorrect credentials,... Moderate Unreviewed
CVE-2023-4380 was published Oct 4, 2023
Insertion of Sensitive Information into Log File vulnerability in Hitachi Ops Center... Moderate Unreviewed
CVE-2023-3335 was published Oct 3, 2023
Sensitive information leak through log files. The following products are affected: Acronis Cyber... Moderate Unreviewed
CVE-2023-44155 was published Sep 27, 2023
An Innsertion of Sensitive Information into Log File vulnerability in SUSE SUSE Manager Server... Moderate Unreviewed
CVE-2023-22644 was published Sep 20, 2023
An insertion of sensitive information into Log file vulnerability has been reported to affect... Moderate Unreviewed
CVE-2022-27599 was published Sep 8, 2023
Insertion of sensitive information into log vulnerability in Locksettings prior to SMR Sep-2023... Moderate Unreviewed
CVE-2023-30721 was published Sep 6, 2023
Sensitive information leak through log files. The following products are affected: Acronis Agent ... Moderate Unreviewed
CVE-2023-4688 was published Aug 31, 2023
IBM Robotic Process Automation 21.0.0 through 21.0.7.1 and 23.0.0 through 23.0.1 server could... Moderate Unreviewed
CVE-2023-38733 was published Aug 23, 2023
IBM Robotic Process Automation 21.0.0 through 21.0.7 server could allow an authenticated user to... Moderate Unreviewed
CVE-2023-38732 was published Aug 22, 2023
Dell PowerScale OneFS 9.5.0.x, contains an insertion of sensitive information into log file... Moderate Unreviewed
CVE-2023-32491 was published Aug 16, 2023
Plaintext Password vulnerability in AddAdmin.py in cms-dev/cms v1.4.rc1, allows attackers to gain... Moderate Unreviewed
CVE-2020-24804 was published Aug 11, 2023
Audit logs on F5OS-A may contain undisclosed sensitive information.  Note: Software versions... Moderate Unreviewed
CVE-2023-36494 was published Aug 2, 2023
The Brocade Fabric OS Commands “configupload” and “configdownload” before Brocade Fabric OS v9... Moderate Unreviewed
CVE-2023-31426 was published Aug 2, 2023
Dell ECS Streamer, versions prior to 2.0.7.1, contain an insertion of sensitive information in... Moderate Unreviewed
CVE-2023-32468 was published Jul 26, 2023
The VMware Tanzu Application Service for VMs and Isolation Segment contain an information... Moderate Unreviewed
CVE-2023-20891 was published Jul 26, 2023
Dell PowerStore versions prior to 3.5.0.1 contain an insertion of sensitive information into log... Moderate Unreviewed
CVE-2023-32478 was published Jul 21, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database