GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 19,370
Composer 3,968
Erlang 29
GitHub Actions 16
Go 1,749
Maven 4,978
npm 3,509
NuGet 609
pip 3,084
Pub 10
RubyGems 832
Rust 782
Swift 34

Unreviewed advisories

All unreviewed 221,313

CC-BY-4.0 License

Language support

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

100,254 advisories

Filter by severity

Sort by

Least recently updated

IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.4 agent username and password error... Moderate Unreviewed

CVE-2024-38322 was published Jun 29, 2024

IBM MQ 9.3 LTS and 9.3 CD could allow a remote attacker to obtain sensitive information when a... Moderate Unreviewed

CVE-2024-35156 was published Jun 29, 2024

IBM MQ 9.0 LTS, 9.1 LTS, 9.2 LTS, 9.3 LTS, and 9.3 CD is vulnerable to a denial of service attack... Moderate Unreviewed

CVE-2024-35116 was published Jun 29, 2024

IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 could allow a local user to obtain... Moderate Unreviewed

CVE-2024-35139 was published Jun 28, 2024

IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 could allow a local user to possibly... Moderate Unreviewed

CVE-2024-35137 was published Jun 28, 2024

IBM MQ 9.0 LTS, 9.1 LTS, 9.2 LTS, 9.3 LTS and 9.3 CD, in certain configurations, is vulnerable to... Moderate Unreviewed

CVE-2024-31919 was published Jun 28, 2024

IBM MQ Console 9.3 LTS and 9.3 CD could disclose could allow a remote attacker to obtain... Moderate Unreviewed

CVE-2024-35155 was published Jun 28, 2024

In lunary-ai/lunary versions <=v1.2.11, an attacker can bypass email validation by using a dot... Moderate Unreviewed

CVE-2024-5755 was published Jun 27, 2024

A Cross-site Scripting (XSS) vulnerability exists in the chat functionality of parisneo/lollms... Moderate Unreviewed

CVE-2024-5933 was published Jun 27, 2024

An open redirect vulnerability exists in imartinez/privategpt version 0.5.0 due to improper... Moderate Unreviewed

CVE-2024-5936 was published Jun 27, 2024

In version 1.2.7 of lunary-ai/lunary, any authenticated user, regardless of their role, can... Moderate Unreviewed

CVE-2024-6086 was published Jun 27, 2024

VMware Workspace One UEM update addresses an information exposure vulnerability. A malicious... Moderate Unreviewed

CVE-2024-22260 was published Jun 27, 2024

A Cross-Site Request Forgery (CSRF) vulnerability in version 0.5.0 of imartinez/privategpt allows... Moderate Unreviewed

CVE-2024-5935 was published Jun 27, 2024

VMware Cloud Director Object Storage Extension contains an Insertion of Sensitive Information... Moderate Unreviewed

CVE-2024-22276 was published Jun 27, 2024

VMware Cloud Director contains an Improper Privilege Management vulnerability. An... Moderate Unreviewed

CVE-2024-22272 was published Jun 27, 2024

Vulnerability in Spotfire Spotfire Enterprise Runtime for R - Server Edition, Spotfire Spotfire... Moderate Unreviewed

CVE-2024-3331 was published Jun 27, 2024

In a Silicon Labs multi-protocol gateway, a corrupt pointer to buffered data on a multi... Moderate Unreviewed

CVE-2024-3017 was published Jun 27, 2024

IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 could disclose sensitive information... Moderate Unreviewed

CVE-2023-38368 was published Jun 27, 2024

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.2.0.2 is vulnerable to cross-site... Moderate Unreviewed

CVE-2023-42014 was published Jun 27, 2024

IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to cross-site scripting. This... Moderate Unreviewed

CVE-2024-35153 was published Jun 27, 2024

Marco Trevisan discovered that the Ubuntu Advantage Desktop Daemon, before version 1.12, leaks... Moderate Unreviewed

CVE-2024-6388 was published Jun 27, 2024

IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 uses weaker than expected... Moderate Unreviewed

CVE-2023-38371 was published Jun 27, 2024

IBM Sterling B2B Integrator Standard Edition 6.1 and 6.2 does not restrict or incorrectly... Moderate Unreviewed

CVE-2023-42011 was published Jun 27, 2024

IBM Security Verify Access 10.0.0.0 through 10.0.7.1, under certain configurations, could allow... Moderate Unreviewed

CVE-2024-31883 was published Jun 27, 2024

IBM Security Verify Access 10.0.0 through 10.0.7.1 could allow a local user to obtain sensitive... Moderate Unreviewed

CVE-2023-30430 was published Jun 27, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

100,254 advisories