Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,838
Erlang
36
GitHub Actions
33
Go
2,460
Maven
5,000+
npm
4,082
NuGet
723
pip
3,873
Pub
12
RubyGems
943
Rust
1,010
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,338 advisories

Loading
In Keyguard, there is a missing permission check. This could lead to local escalation of... High Unreviewed
CVE-2022-20274 was published Aug 13, 2022
In Telephony, there is a possible information disclosure due to a missing permission check. This... Moderate Unreviewed
CVE-2022-20284 was published Aug 13, 2022
In Midi, there is a possible way to learn about private midi devices due to a permissions bypass.... Moderate Unreviewed
CVE-2022-20290 was published Aug 13, 2022
In AppWidget, there is a possible way to start an activity from the background due to a missing... High Unreviewed
CVE-2022-20282 was published Aug 13, 2022
A flaw was found in Linux, in targetcli-fb versions 2.1.50 and 2.1.51 where the socket used by... High Unreviewed
CVE-2020-10699 was published May 24, 2022
Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has weak /opt/axess/var/blobstorage/ permissions. Moderate Unreviewed
CVE-2020-15328 was published Sep 30, 2022
An information-exposure vulnerability was discovered where openstack-mistral's undercloud log... Low Unreviewed
CVE-2019-3866 was published May 24, 2022
Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has weak Data.fs permissions. Moderate Unreviewed
CVE-2020-15329 was published Sep 30, 2022
browser/extensions/api/dial/dial_registry.cc in Google Chrome before 54.0.2840.98 on macOS,... High Unreviewed
CVE-2016-5202 was published May 24, 2022
A flaw was found in the Linux Kernel before 5.8-rc6 in the ZRAM kernel module, where a user with... Moderate Unreviewed
CVE-2020-10781 was published May 24, 2022
Brokercap Bifrost subject to authentication bypass when using HTTP basic authentication High
CVE-2022-39219 was published for github.com/brokercap/Bifrost (Go) Sep 27, 2022
tarihub
Zammad 5.2.1 has a fine-grained permission model that allows to configure read-only access to... Moderate Unreviewed
CVE-2022-40817 was published Sep 28, 2022
Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, does... High Unreviewed
CVE-2013-0885 was published May 14, 2022
The developer-tools process in Google Chrome before 25.0.1364.97 on Windows and Linux, and before... High Unreviewed
CVE-2013-0887 was published May 17, 2022
A vulnerability related to weak permissions was detected in Avaya Aura Application Enablement... Moderate Unreviewed
CVE-2022-2975 was published Oct 6, 2022
Adobe Creative Cloud version 5.5 (and earlier) are affected by a privilege escalation... High Unreviewed
CVE-2021-43019 was published Nov 24, 2021
A flaw in the WordPress plugin, Minimal Coming Soon & Maintenance Mode through 2.10, allows... Moderate Unreviewed
CVE-2020-6168 was published May 24, 2022
The keystone-json-assignment package in SUSE Openstack Cloud 8 before commit... Moderate Unreviewed
CVE-2019-3683 was published May 24, 2022
A privilege escalation vulnerability in Wowza Streaming Engine 4.7.7 and 4.7.8 allows any... High Unreviewed
CVE-2019-7656 was published May 24, 2022
An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects... Moderate Unreviewed
CVE-2020-0668 was published May 24, 2022
An issue was discovered on Phoenix Contact Emalytics Controller ILC 2050 BI before 1.2.3 and BI-L... High Unreviewed
CVE-2020-8768 was published May 24, 2022
ZTE E8820V3 router product is impacted by a permission and access control vulnerability.... Low Unreviewed
CVE-2020-6863 was published May 24, 2022
An insecure modification vulnerability in the /etc/passwd file was found in all versions of... Moderate Unreviewed
CVE-2020-1704 was published May 24, 2022
An issue was discovered in the Widgets extension through 1.4.0 for MediaWiki. Improper title... Moderate Unreviewed
CVE-2020-9382 was published May 24, 2022
An issue was discovered in Avast Antivirus before 20. The aswTask RPC endpoint for the TaskEx... Moderate Unreviewed
CVE-2020-10868 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database