Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
49
GitHub Actions
50
Go
3,606
Maven
5,000+
npm
5,000+
NuGet
924
pip
4,831
Pub
13
RubyGems
1,045
Rust
1,256
Swift
53
Unreviewed advisories
All unreviewed
5,000+

721 advisories

Loading
Cleartext Transmission of Sensitive Information vulnerability in Broadcom DX NetOps Spectrum on... Moderate Unreviewed
CVE-2025-69272 was published Jan 12, 2026
A potential vulnerability was reported in ThinkPlus configuration software that could allow a... Moderate Unreviewed
CVE-2025-13454 was published Jan 15, 2026
The Process Optimization application suite leverages connection channels/protocols that by... High Unreviewed
CVE-2025-64769 was published Jan 16, 2026
Open WebUI Cleartext Transmission of Credentials Information Disclosure Vulnerability. This... Moderate Unreviewed
CVE-2026-0767 was published Jan 23, 2026
Dell ECS, versions 3.8.1.0 through 3.8.1.7, and Dell ObjectScale versions prior to 4.2.0.0,... High Unreviewed
CVE-2026-22271 was published Jan 23, 2026
Dell ECS, versions 3.8.1.0 through 3.8.1.7, and Dell ObjectScale versions prior to 4.2.0.0,... Moderate Unreviewed
CVE-2026-22274 was published Jan 23, 2026
A vulnerability in TeamViewer DEX Client (former 1E Client) - Content Distribution Service ... Moderate Unreviewed
CVE-2026-23564 was published Jan 29, 2026
SageMaker Python SDK has Exposed HMAC High
CVE-2026-1777 was published for sagemaker (pip) Feb 2, 2026
Shenzhen Tenda AC7 firmware version V03.03.03.01_cn and prior expose account credentials in... High Unreviewed
CVE-2026-24441 was published Feb 3, 2026
A physical attack vulnerability exists in certain Moxa industrial computers using TPM-backed LUKS... High Unreviewed
CVE-2026-0714 was published Feb 5, 2026
A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. The... Low Unreviewed
CVE-2025-66604 was published Feb 9, 2026
Cleartext Transmission of Sensitive Information vulnerability in Pan Software & Information... High Unreviewed
CVE-2025-10174 was published Feb 11, 2026
The RF communication protocol in the Micca KE700 car alarm system does not encrypt its data... Moderate Unreviewed
CVE-2026-2539 was published Feb 15, 2026
IBM DB2 Recovery Expert for LUW 5.5 Interim Fix 002 IBM Db2 Recovery Expert for Linux, UNIX and... Moderate Unreviewed
CVE-2025-27903 was published Feb 17, 2026
The embedded web interface of the device does not support HTTPS/TLS for authentication and uses... High Unreviewed
CVE-2026-24455 was published Feb 20, 2026
SODOLA SL902-SWTGW124AS firmware versions through 200.1.20 transmit authentication credentials... High Unreviewed
CVE-2026-27752 was published Feb 27, 2026
In Microsoft Exchange through 2019, Exchange ActiveSync (EAS) configurations on on-premises... High Unreviewed
CVE-2025-58107 was published Mar 2, 2026
In multiple functions of btm_ble_sec.cc, there is a possible unencrypted communication due to... Moderate Unreviewed
CVE-2024-43766 was published Mar 2, 2026
Cleartext Transmission of Sensitive Information (CWE-319) in a component used in the Gallagher... Moderate Unreviewed
CVE-2026-20801 was published Mar 3, 2026
Rancher's weave CNI password is not configured when a cluster is created from an RKE template Moderate
CVE-2022-21951 was published for github.com/rancher/rancher (Go) Mar 3, 2026
IBM App Connect Operator versions CD 11.3.0 through 11.6.0 and 12.1.0 through 12.20.0, LTS... Moderate Unreviewed
CVE-2025-13490 was published Mar 3, 2026
OpenClaw has an opt-in insecure Control UI auth over plaintext HTTP could allow privileged access Moderate
CVE-2026-32034 was published for openclaw (npm) Mar 3, 2026
Vasco0x4 Credited to Vasco0x4
Cleartext Transmission of Sensitive Information vulnerability in rustdesk-server-pro RustDesk... High Unreviewed
CVE-2026-30796 was published Mar 5, 2026
Cleartext Transmission of Sensitive Information vulnerability in rustdesk-client RustDesk Client... High Unreviewed
CVE-2026-30795 was published Mar 5, 2026
An issue pertaining to CWE-319: Cleartext Transmission of Sensitive Information was discovered in... High Unreviewed
CVE-2025-70048 was published Mar 9, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database