GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
2,028 advisories
Filter by severity
Insufficient security control vulnerability in internal database access mechanism of Hitachi...
High
Unreviewed
CVE-2021-35534
was published
Nov 19, 2021
An issue was discovered in Quagga through 1.2.4. Unsafe chown/chmod operations in the suggested...
High
Unreviewed
CVE-2021-44038
was published
Nov 20, 2021
Networking OS10, versions prior to October 2021 with RESTCONF API enabled, contains a privilege...
High
Unreviewed
CVE-2021-36307
was published
Nov 21, 2021
certain VT-d IOMMUs may not work in shared page table mode For efficiency reasons, address...
High
Unreviewed
CVE-2021-28710
was published
Nov 22, 2021
An unnecessary privilege vulnerability in Trend Micro Worry-Free Business Security 10.0 SP1 could...
High
Unreviewed
CVE-2021-44020
was published
Dec 4, 2021
An unnecessary privilege vulnerability in Trend Micro Worry-Free Business Security 10.0 SP1 could...
High
Unreviewed
CVE-2021-44021
was published
Dec 4, 2021
An unnecessary privilege vulnerability in Trend Micro Worry-Free Business Security 10.0 SP1 could...
High
Unreviewed
CVE-2021-44019
was published
Dec 4, 2021
An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. The privileged...
High
Unreviewed
CVE-2021-43040
was published
Dec 7, 2021
An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. A world writable file...
High
Unreviewed
CVE-2021-43034
was published
Dec 7, 2021
There is a Permissions,Privileges,and Access Controls vulnerability in Huawei Smartphone...
High
Unreviewed
CVE-2021-37091
was published
Dec 8, 2021
A privilege escalation vulnerability in FortiNAC versions 8.8.8 and below and 9.1.2 and below may...
High
Unreviewed
CVE-2021-41021
was published
Dec 9, 2021
An improper access control vulnerability [CWE-284] in FortiOS autod daemon 7.0.0, 6.4.6 and below...
High
Unreviewed
CVE-2021-26110
was published
Dec 9, 2021
An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.0 before 14...
High
Unreviewed
CVE-2021-39944
was published
Dec 14, 2021
A collision in access memoization logic in all versions of GitLab CE/EE before 14.3.6, all...
High
Unreviewed
CVE-2021-39937
was published
Dec 14, 2021
IBM MQ on HPE NonStop 8.0.4 and 8.1.0 is vulnerable to a privilege escalation attack when...
High
Unreviewed
CVE-2021-38950
was published
Dec 15, 2021
An issue was discovered in Cuppa CMS Versions Before 31 Jan 2021 allows authenticated attackers...
High
Unreviewed
CVE-2021-3376
was published
Dec 15, 2021
In (TBD) of (TBD), there is a possible way to boot with a hidden debug policy due to a missing...
High
Unreviewed
CVE-2021-39653
was published
Dec 16, 2021
In setTransactionState of SurfaceFlinger, there is possible arbitrary code execution in a...
High
Unreviewed
CVE-2021-1027
was published
Dec 16, 2021
In snoozeNotification of NotificationListenerService.java, there is a possible permission...
High
Unreviewed
CVE-2021-1019
was published
Dec 16, 2021
In onNullBinding of ManagedServices.java, there is a possible permission bypass due to an...
High
Unreviewed
CVE-2021-0984
was published
Dec 16, 2021
In enqueueNotificationInternal of NotificationManagerService.java, there is a possible way to run...
High
Unreviewed
CVE-2021-0981
was published
Dec 16, 2021
In ActivityThread.java, there is a possible way to collide the content provider's authorities....
High
Unreviewed
CVE-2021-0799
was published
Dec 16, 2021
In onCreate of AllowBindAppWidgetActivity.java, there is a possible bypass of user interaction...
High
Unreviewed
CVE-2021-0769
was published
Dec 16, 2021
In onReceive of BluetoothPermissionRequest.java, there is a possible phishing attack allowing a...
High
Unreviewed
CVE-2021-0434
was published
Dec 16, 2021
Windows Encrypting File System (EFS) Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2021-43893
was published
Dec 16, 2021
ProTip!
Advisories are also available from the
GraphQL API