GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
3,348 advisories
Filter by severity
In onUidStateChanged of AppOpsService.java, there is a possible way to access location without a...
High
Unreviewed
CVE-2021-39693
was published
Mar 17, 2022
In multiple functions of odsign_main.cpp, there is a possible way to persist system attack due to...
High
Unreviewed
CVE-2021-39689
was published
Mar 17, 2022
A logic issue was addressed with improved validation. This issue is fixed in macOS Monterey 12.3....
High
Unreviewed
CVE-2022-22665
was published
Mar 19, 2022
In NotificationStackScrollLayout of NotificationStackScrollLayout.java, there is a possible way...
High
Unreviewed
CVE-2021-0957
was published
Mar 17, 2022
In several functions of binder.c, there is a possible way to represent the wrong domain to...
High
Unreviewed
CVE-2021-39686
was published
Mar 17, 2022
A privilege escalation vulnerability exists in the Windows version of installation for Advantech...
High
Unreviewed
CVE-2021-21910
was published
Dec 23, 2021
A logic issue was addressed with improved state management. This issue is fixed in iOS 15.4 and...
High
Unreviewed
CVE-2022-22639
was published
Mar 19, 2022
certain VT-d IOMMUs may not work in shared page table mode For efficiency reasons, address...
High
Unreviewed
CVE-2021-28710
was published
Nov 22, 2021
One of the API in Mattermost version 6.3.0 and earlier fails to properly protect the permissions,...
Moderate
Unreviewed
CVE-2022-1003
was published
Mar 19, 2022
The IBM Spectrum Protect 8.1.14.000 server could allow a remote attacker to bypass security...
High
Unreviewed
CVE-2022-22394
was published
Mar 22, 2022
A logic issue was addressed with improved validation. This issue is fixed in tvOS 15.3, iOS 15.3...
High
Unreviewed
CVE-2022-22578
was published
Mar 19, 2022
Vertical Privilege Escalation in KONGA 0.14.9 allows attackers to higher privilege users to full...
High
Unreviewed
CVE-2021-44103
was published
Mar 29, 2022
There is a Permissions,Privileges,and Access Controls vulnerability in Huawei Smartphone...
High
Unreviewed
CVE-2021-37091
was published
Dec 8, 2021
In setTransactionState of SurfaceFlinger, there is possible arbitrary code execution in a...
High
Unreviewed
CVE-2021-1027
was published
Dec 16, 2021
A privilege escalation vulnerability in FortiNAC versions 8.8.8 and below and 9.1.2 and below may...
High
Unreviewed
CVE-2021-41021
was published
Dec 9, 2021
An improper access control vulnerability [CWE-284] in FortiOS autod daemon 7.0.0, 6.4.6 and below...
High
Unreviewed
CVE-2021-26110
was published
Dec 9, 2021
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5...
Moderate
Unreviewed
CVE-2021-38926
was published
Dec 10, 2021
Product: AndroidVersions: Android kernelAndroid ID: A-199809304References: N/A
Critical
Unreviewed
CVE-2021-39644
was published
Dec 16, 2021
IBM MQ on HPE NonStop 8.0.4 and 8.1.0 is vulnerable to a privilege escalation attack when...
High
Unreviewed
CVE-2021-38950
was published
Dec 15, 2021
Product: AndroidVersions: Android kernelAndroid ID: A-199805112References: N/A
Critical
Unreviewed
CVE-2021-39645
was published
Dec 16, 2021
In onCreate of PaymentDefaultDialog.java, there is a possible way to change a default payment app...
Low
Unreviewed
CVE-2021-0992
was published
Dec 16, 2021
An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.11 before 14...
Moderate
Unreviewed
CVE-2021-39931
was published
Dec 14, 2021
Windows Digital TV Tuner Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2021-43245
was published
Dec 16, 2021
In ic_startRetrieveEntryValue of acropora/app/identity/ic.c, there is a possible bypass of...
Moderate
Unreviewed
CVE-2021-39643
was published
Dec 16, 2021
An issue was discovered in Cuppa CMS Versions Before 31 Jan 2021 allows authenticated attackers...
High
Unreviewed
CVE-2021-3376
was published
Dec 15, 2021
ProTip!
Advisories are also available from the
GraphQL API