Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,245
Erlang
31
GitHub Actions
21
Go
2,010
Maven
5,000+
npm
3,718
NuGet
662
pip
3,391
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

2,140 advisories

Loading
An Improper Privilege Management vulnerability in the Windows Installer framework used in the... High Unreviewed
CVE-2022-22187 was published Apr 15, 2022
In sendLegacyVoicemailNotification of LegacyModeSmsHandler.java, there is a possible permissions... High Unreviewed
CVE-2021-39627 was published Jan 15, 2022
CyberArk Endpoint Privilege Manager (EPM) through 11.5.3.328 before 2021-12-20 allows a local... High Unreviewed
CVE-2021-44049 was published Jan 16, 2022
In <TBD> of <TBD>, there is a possible bypass of Factory Reset Protection due to <TBD>. This... High Unreviewed
CVE-2021-39678 was published Jan 15, 2022
In change_pte_range of mprotect.c , there is a possible way to make a shared mmap writable due to... High Unreviewed
CVE-2021-39802 was published Apr 13, 2022
The Apache Log4j hotpatch package before log4j-cve-2021-44228-hotpatch-1.1-12 didn’t mimic the... High Unreviewed
CVE-2021-3100 was published Apr 21, 2022
In updatePackageMappingsData of UsageStatsService.java, there is a possible way to bypass... High Unreviewed
CVE-2021-39619 was published Feb 12, 2022
In multiple methods of EuiccNotificationManager.java, there is a possible way to install existing... High Unreviewed
CVE-2021-39618 was published Jan 15, 2022
In executeRequest of OverlayManagerService.java, there is a possible way to control fabricated... High Unreviewed
CVE-2021-39630 was published Jan 15, 2022
Insufficient compartmentalization in HECI subsystem for the Intel(R) SPS before versions... High Unreviewed
CVE-2021-0060 was published Feb 11, 2022
In jit_memory_region.cc, there is a possible bypass of memory restrictions due to a logic error... High Unreviewed
CVE-2021-0959 was published Jan 15, 2022
Windows Endpoint Configuration Manager Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-24527 was published Apr 16, 2022
A non-admin user with user management permission can escalate his privilege to admin user via... High Unreviewed
CVE-2022-22572 was published Apr 12, 2022
Micro-Star International (MSI) Center Pro <= 2.0.16.0 is vulnerable to multiple Privilege... High Unreviewed
CVE-2021-44903 was published Feb 9, 2022
Micro-Star International (MSI) Center <= 1.0.31.0 is vulnerable to multiple Privilege Escalation... High Unreviewed
CVE-2021-44899 was published Feb 9, 2022
Privilege escalation vulnerability in the Self-Defense driver of Avast Antivirus prior to 20.8... High Unreviewed
CVE-2021-45337 was published Dec 28, 2021
A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local... High Unreviewed
CVE-2022-20739 was published Apr 16, 2022
In AttributionSource of AttributionSource.java, there is a possible permission bypass due to... High Unreviewed
CVE-2021-39799 was published Apr 13, 2022
A vulnerability in the configuration import mechanism of the B. Braun Melsungen AG SpaceCom... High Unreviewed
CVE-2020-16238 was published Apr 15, 2022
In handleNfcStateChanged of SecureNfcEnabler.java, there is a possible way to enable NFC from the... High Unreviewed
CVE-2021-39807 was published Apr 13, 2022
In several functions of of LauncherApps.java, there is a possible escalation of privilege due to... High Unreviewed
CVE-2021-39797 was published Apr 13, 2022
In createNotificationChannelGroup of PreferencesHelper.java, there is a possible way for a... High Unreviewed
CVE-2021-39808 was published Apr 13, 2022
Micro-Star International (MSI) Dragon Center <= 2.0.116.0 is vulnerable to multiple Privilege... High Unreviewed
CVE-2021-44901 was published Feb 9, 2022
Micro-Star International (MSI) App Player <= 4.280.1.6309 is vulnerable to multiple Privilege... High Unreviewed
CVE-2021-44900 was published Feb 9, 2022
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur... High Unreviewed
CVE-2022-22617 was published Mar 19, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database