GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
417 advisories
Filter by severity
Kastle Systems firmware prior to May 1, 2024, stored machine credentials in cleartext, which may...
High
Unreviewed
CVE-2024-45862
was published
Sep 19, 2024
An issue in Texas Instruments Fusion Digital Power Designer v.7.10.1 allows a local attacker to...
Moderate
Unreviewed
CVE-2024-41629
was published
Sep 12, 2024
A problem with the ActiveMQ integration for both Cortex XSOAR and Cortex XSIAM can result in the...
Moderate
Unreviewed
CVE-2024-8689
was published
Sep 11, 2024
A cleartext storage of sensitive information in memory vulnerability [CWE-316] affecting...
Moderate
Unreviewed
CVE-2024-35282
was published
Sep 10, 2024
Cleartext storage of sensitive information vulnerability exists in WindLDR and WindO/I-NV4. If...
High
Unreviewed
CVE-2024-41716
was published
Sep 4, 2024
Cleartext Storage of Sensitive Information vulnerability in NAC Telecommunication Systems Inc....
High
Unreviewed
CVE-2024-6921
was published
Sep 2, 2024
A vulnerability identified in storing and reusing information in Advance Authentication. This...
High
Unreviewed
CVE-2021-22509
was published
Aug 28, 2024
IBM QRadar Suite Software 1.10.12.0 through 1.10.23.0 and IBM Cloud Pak for Security 1.10.0.0...
Moderate
Unreviewed
CVE-2024-25024
was published
Aug 15, 2024
An information exposure vulnerability in Palo Alto Networks PAN-OS software enables a local...
Moderate
Unreviewed
CVE-2024-5916
was published
Aug 14, 2024
Insecure Permissions vulnerability in Cosy+ devices running a firmware 21.x below 21.2s10 or a...
Moderate
Unreviewed
CVE-2024-33892
was published
Aug 2, 2024
A vulnerability has been identified in Omnivise T3000 Application Server (All versions), Omnivise...
High
Unreviewed
CVE-2024-38877
was published
Aug 2, 2024
This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to storing of FTP credentials...
High
Unreviewed
CVE-2024-41691
was published
Jul 26, 2024
This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to storing of default...
High
Unreviewed
CVE-2024-41690
was published
Jul 26, 2024
This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due lack of encryption in storing...
High
Unreviewed
CVE-2024-41688
was published
Jul 26, 2024
This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to unencrypted storing of WPA...
Moderate
Unreviewed
CVE-2024-41689
was published
Jul 26, 2024
Plaintext vulnerability in the Gallery search module.
Impact: Successful exploitation of this...
Moderate
Unreviewed
CVE-2024-39674
was published
Jul 25, 2024
An issue was found on the Ruijie EG-2000 series gateway. An attacker can easily dump cleartext...
High
Unreviewed
CVE-2019-16638
was published
Jul 16, 2024
IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 temporarily stores data from...
Moderate
Unreviewed
CVE-2024-39732
was published
Jul 14, 2024
IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 and IBM QRadar Suite Software 1.10.12.0...
Moderate
Unreviewed
CVE-2024-25023
was published
Jul 10, 2024
A vulnerability in a password management API in Brocade Fabric OS versions before v9.2.1, v9.2.0b...
Moderate
Unreviewed
CVE-2024-29954
was published
Jun 26, 2024
The decrypted configuration file contains the password in cleartext
which is used to configure...
Critical
Unreviewed
CVE-2024-36497
was published
Jun 24, 2024
The Kiuwan Local Analyzer (KLA) Java scanning application contains several
hard-coded secrets in...
High
Unreviewed
CVE-2023-49113
was published
Jun 20, 2024
A vulnerability exists in the FOXMAN-UN/UNEM in which sensitive information is
stored in...
Low
Unreviewed
CVE-2024-28024
was published
Jun 11, 2024
Netgear WNR614 JNR1010V2/N300-V1.1.0.54_1.0.1 was discovered to store credentials in plaintext.
High
Unreviewed
CVE-2024-36790
was published
Jun 7, 2024
An issue was discovered in Italtel Embrace 1.6.4. The web application inserts cleartext passwords...
Moderate
Unreviewed
CVE-2024-31840
was published
May 21, 2024
ProTip!
Advisories are also available from the
GraphQL API