Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,318
Erlang
31
GitHub Actions
21
Go
2,074
Maven
5,000+
npm
3,746
NuGet
674
pip
3,434
Pub
12
RubyGems
892
Rust
880
Swift
37
Unreviewed advisories
All unreviewed
5,000+

351 advisories

Loading
Ypsomed mylife Cloud, mylife Mobile Application:Ypsomed mylife Cloud,All versions prior to 1.7.2... High Unreviewed
CVE-2021-27491 was published May 24, 2022
Ypsomed mylife Cloud, mylife Mobile Application:Ypsomed mylife Cloud,All versions prior to 1.7.2... High Unreviewed
CVE-2021-27495 was published May 24, 2022
On Crestron DM-NVX-DIR, DM-NVX-DIR80, and DM-NVX-ENT devices before the DM-XIO/1-0-3-802 patch,... High Unreviewed
CVE-2020-16839 was published May 24, 2022
Dell EMC Repository Manager (DRM) version 3.2 contains a plain-text password storage... High Unreviewed
CVE-2020-5315 was published May 24, 2022
IBM Security Access Manager 9.0 and IBM Security Verify Access Docker 10.0.0 stores user... High Unreviewed
CVE-2021-20439 was published May 24, 2022
DEPSTECH WiFi Digital Microscope 3 allows remote attackers to change the SSID and password, and... High Unreviewed
CVE-2020-12734 was published May 24, 2022
Password autocomplete vulnerability in the web application password field of Hitachi ABB Power... High Unreviewed
CVE-2021-35527 was published May 24, 2022
Insufficiently Protected Credentials vulnerability exists in EcoStruxure Control Expert (all... High Unreviewed
CVE-2021-22780 was published May 24, 2022
Insufficiently Protected Credentials vulnerability exists in EcoStruxure Control Expert (all... High Unreviewed
CVE-2021-22778 was published May 24, 2022
IBM Guardium Data Encryption (GDE) 4.0.0.4 uses an inadequate account lockout setting that could... High Unreviewed
CVE-2021-20415 was published May 24, 2022
There is a Credentials Management Errors Vulnerability in Huawei Smartphone. Successful... High Unreviewed
CVE-2021-22370 was published May 24, 2022
There is a Credentials Management Errors Vulnerability in Huawei Smartphone. Successful... High Unreviewed
CVE-2021-22351 was published May 24, 2022
User credentials stored in a recoverable format within Fidelis Network and Deception CommandPost.... High Unreviewed
CVE-2021-35050 was published May 24, 2022
TP-Link's TL-WPA4220 4.0.2 Build 20180308 Rel.37064 username and password are sent via the cookie. High Unreviewed
CVE-2021-28857 was published May 24, 2022
D-Link DIR-2640-US 1.01B04 is affected by Insufficiently Protected Credentials. D-Link AC2600(DIR... High Unreviewed
CVE-2021-34204 was published May 24, 2022
Brocade SANnav before version 2.1.1 contains an Improper Authentication vulnerability that allows... High Unreviewed
CVE-2020-15381 was published May 24, 2022
An insufficiently protected credentials issue was discovered in Intland codeBeamer ALM 10.x... High Unreviewed
CVE-2020-26515 was published May 24, 2022
The D-Link router DIR-868L 3.01 is vulnerable to credentials disclosure in telnet service through... High Unreviewed
CVE-2020-29321 was published May 24, 2022
The D-Link router DIR-880L 1.07 is vulnerable to credentials disclosure in telnet service through... High Unreviewed
CVE-2020-29322 was published May 24, 2022
The D-link router DIR-885L-MFC 1.15b02, v1.21b05 is vulnerable to credentials disclosure in... High Unreviewed
CVE-2020-29323 was published May 24, 2022
There is a Credentials Management Errors vulnerability in Huawei Smartphone. Successful... High Unreviewed
CVE-2021-22324 was published May 24, 2022
The NGINX Controller 2.0.0 thru 2.9.0 and 3.x before 3.15.0 Administrator password may be exposed... High Unreviewed
CVE-2021-23019 was published May 24, 2022
IBM Cognos Analytics 11.0 and 11.1 could allow a remote attacker to obtain credentials from a... High Unreviewed
CVE-2019-4724 was published May 24, 2022
IBM Cognos Analytics 11.0 and 11.1 could allow a remote attacker to obtain credentials from a... High Unreviewed
CVE-2019-4723 was published May 24, 2022
IBM Security Guardium 11.2 stores user credentials in plain clear text which can be read by a... High Unreviewed
CVE-2021-20389 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database