Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

2,140 advisories

Loading
Microsoft Jet Red Database Engine and Access Connectivity Engine Elevation of Privilege... High Unreviewed
CVE-2021-42293 was published Feb 11, 2022
An issue was discovered in Quagga through 1.2.4. Unsafe chown/chmod operations in the suggested... High Unreviewed
CVE-2021-44038 was published Nov 20, 2021
In ActivityThread.java, there is a possible way to collide the content provider's authorities.... High Unreviewed
CVE-2021-0799 was published Dec 16, 2021
In onReceive of BluetoothPermissionRequest.java, there is a possible phishing attack allowing a... High Unreviewed
CVE-2021-0434 was published Dec 16, 2021
In snoozeNotification of NotificationListenerService.java, there is a possible permission... High Unreviewed
CVE-2021-1019 was published Dec 16, 2021
Windows Digital TV Tuner Elevation of Privilege Vulnerability High Unreviewed
CVE-2021-43245 was published Dec 16, 2021
An issue was discovered in Cuppa CMS Versions Before 31 Jan 2021 allows authenticated attackers... High Unreviewed
CVE-2021-3376 was published Dec 15, 2021
IBM MQ on HPE NonStop 8.0.4 and 8.1.0 is vulnerable to a privilege escalation attack when... High Unreviewed
CVE-2021-38950 was published Dec 15, 2021
There is a Permissions,Privileges,and Access Controls vulnerability in Huawei Smartphone... High Unreviewed
CVE-2021-37091 was published Dec 8, 2021
An improper access control vulnerability [CWE-284] in FortiOS autod daemon 7.0.0, 6.4.6 and below... High Unreviewed
CVE-2021-26110 was published Dec 9, 2021
A privilege escalation vulnerability in FortiNAC versions 8.8.8 and below and 9.1.2 and below may... High Unreviewed
CVE-2021-41021 was published Dec 9, 2021
In setTransactionState of SurfaceFlinger, there is possible arbitrary code execution in a... High Unreviewed
CVE-2021-1027 was published Dec 16, 2021
Vertical Privilege Escalation in KONGA 0.14.9 allows attackers to higher privilege users to full... High Unreviewed
CVE-2021-44103 was published Mar 29, 2022
A logic issue was addressed with improved validation. This issue is fixed in tvOS 15.3, iOS 15.3... High Unreviewed
CVE-2022-22578 was published Mar 19, 2022
The IBM Spectrum Protect 8.1.14.000 server could allow a remote attacker to bypass security... High Unreviewed
CVE-2022-22394 was published Mar 22, 2022
certain VT-d IOMMUs may not work in shared page table mode For efficiency reasons, address... High Unreviewed
CVE-2021-28710 was published Nov 22, 2021
A logic issue was addressed with improved state management. This issue is fixed in iOS 15.4 and... High Unreviewed
CVE-2022-22639 was published Mar 19, 2022
A privilege escalation vulnerability exists in the Windows version of installation for Advantech... High Unreviewed
CVE-2021-21910 was published Dec 23, 2021
In NotificationStackScrollLayout of NotificationStackScrollLayout.java, there is a possible way... High Unreviewed
CVE-2021-0957 was published Mar 17, 2022
In several functions of binder.c, there is a possible way to represent the wrong domain to... High Unreviewed
CVE-2021-39686 was published Mar 17, 2022
In multiple functions of odsign_main.cpp, there is a possible way to persist system attack due to... High Unreviewed
CVE-2021-39689 was published Mar 17, 2022
In onUidStateChanged of AppOpsService.java, there is a possible way to access location without a... High Unreviewed
CVE-2021-39693 was published Mar 17, 2022
A logic issue was addressed with improved validation. This issue is fixed in macOS Monterey 12.3.... High Unreviewed
CVE-2022-22665 was published Mar 19, 2022
'Long-term Data Archive Package' service implemented in the following Yokogawa Electric products... High Unreviewed
CVE-2022-22141 was published Mar 12, 2022
An elevation of privilege vulnerability in the QNX Neutrino Kernel of affected versions of QNX... High Unreviewed
CVE-2021-32025 was published Mar 11, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database