Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

583 advisories

Loading
An insecure modification flaw in the /etc/passwd file was found in the openjdk-1.8 and openjdk-11... High Unreviewed
CVE-2021-20264 was published May 24, 2022
The MacOS version of Multipass, version 1.7.0, fixed in 1.7.2, accidentally installed the... High Unreviewed
CVE-2021-3747 was published May 24, 2022
The access controls on the Mobility read-write API improperly validate user access permissions;... High Unreviewed
CVE-2021-40067 was published May 24, 2022
adminlte is vulnerable to Sensitive Cookie Without 'HttpOnly' Flag High Unreviewed
CVE-2021-3706 was published May 24, 2022
Elastic Enterprise Search App Search versions before 7.14.0 was vulnerable to an issue where API... High Unreviewed
CVE-2021-22148 was published May 24, 2022
Elastic Enterprise Search App Search versions before 7.14.0 are vulnerable to an issue where API... High Unreviewed
CVE-2021-22149 was published May 24, 2022
Visual Studio Elevation of Privilege Vulnerability High Unreviewed
CVE-2021-26434 was published May 24, 2022
A permissions issue existed in DiskArbitration. This was addressed with additional ownership... High Unreviewed
CVE-2021-1784 was published May 24, 2022
Improper Access Control Tampering Vulnerability using ImportAlert function which can lead to a... High Unreviewed
CVE-2021-35221 was published May 24, 2022
A configuration issue in Indexhibit 2.1.5 allows authenticated attackers to modify .php files,... High Unreviewed
CVE-2020-18121 was published May 24, 2022
Certain Canon devices manufactured in 2012 through 2020 (such as imageRUNNER ADVANCE iR-ADV C5250... High Unreviewed
CVE-2021-38154 was published May 24, 2022
Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an incorrect permission assignment for... High Unreviewed
CVE-2021-36279 was published May 24, 2022
Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an incorrect permission assignment... High Unreviewed
CVE-2021-36281 was published May 24, 2022
The Canon TR150 print driver through 3.71.2.10 is vulnerable to a privilege escalation issue.... High Unreviewed
CVE-2021-38085 was published May 24, 2022
In SapphireIMS 4097_1, a guest user can create a local administrator account on any system that... High Unreviewed
CVE-2017-16630 was published May 24, 2022
In SapphireIMS 5.0, it is possible to create local administrator on any client with credentials... High Unreviewed
CVE-2020-25564 was published May 24, 2022
Dell PowerScale OneFS 9.1.0.x contains an improper privilege management vulnerability. It may... High Unreviewed
CVE-2021-21567 was published May 24, 2022
Acronis True Image prior to 2021 Update 5 for Windows allowed local privilege escalation due to... High Unreviewed
CVE-2021-32577 was published May 24, 2022
Windows Elevation of Privilege Vulnerability High Unreviewed
CVE-2021-36934 was published May 24, 2022
An incorrect permission assignment denial-of-service vulnerability in Trend Micro Apex One, Apex... High Unreviewed
CVE-2021-32463 was published May 24, 2022
The Lexmark Universal Print Driver version 2.15.1.0 and below, G2 driver 2.7.1.0 and below, G3... High Unreviewed
CVE-2021-35449 was published May 24, 2022
A vulnerability has been identified in SIMATIC PCS 7 V8.2 and earlier (All versions), SIMATIC PCS... High Unreviewed
CVE-2021-31894 was published May 24, 2022
IBM Cloud Pak for Applications 4.3 could allow an authenticated user gain escalated privilesges... High Unreviewed
CVE-2021-20423 was published May 24, 2022
Talk 4 in Coral before 4.12.1 allows remote attackers to discover e-mail addresses and other... High Unreviewed
CVE-2021-35970 was published May 24, 2022
The Windows Installation component of TIBCO Software Inc.'s TIBCO Enterprise Runtime for R -... High Unreviewed
CVE-2021-23275 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database