GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
3,348 advisories
Filter by severity
In snoozeNotification of NotificationListenerService.java, there is a possible permission...
High
Unreviewed
CVE-2021-1019
was published
Dec 16, 2021
An issue was discovered in Quagga through 1.2.4. Unsafe chown/chmod operations in the suggested...
High
Unreviewed
CVE-2021-44038
was published
Nov 20, 2021
Microsoft Jet Red Database Engine and Access Connectivity Engine Elevation of Privilege...
High
Unreviewed
CVE-2021-42293
was published
Feb 11, 2022
In onReceive of BluetoothPermissionRequest.java, there is a possible phishing attack allowing a...
High
Unreviewed
CVE-2021-0434
was published
Dec 16, 2021
In ActivityThread.java, there is a possible way to collide the content provider's authorities....
High
Unreviewed
CVE-2021-0799
was published
Dec 16, 2021
In onCreate of AllowBindAppWidgetActivity.java, there is a possible bypass of user interaction...
High
Unreviewed
CVE-2021-0769
was published
Dec 16, 2021
Product: AndroidVersions: Android kernelAndroid ID: A-192641593References: N/A
Critical
Unreviewed
CVE-2021-39655
was published
Dec 16, 2021
Product: AndroidVersions: Android kernelAndroid ID: A-126949257References: N/A
Critical
Unreviewed
CVE-2021-39641
was published
Dec 16, 2021
In rcsservice, there is a possible way to modify TTY mode due to a missing permission check. This...
High
Unreviewed
CVE-2021-39783
was published
Mar 31, 2022
In Telephony, there is a possible unauthorized modification of the PLMN SIM file due to a missing...
High
Unreviewed
CVE-2021-39782
was published
Mar 31, 2022
In SmsController, there is a possible information disclosure due to a permissions bypass. This...
High
Unreviewed
CVE-2021-39781
was published
Mar 31, 2022
In CellBroadcastReceiver, there is a possible path to enable specific cellular features due to a...
High
Unreviewed
CVE-2021-39784
was published
Mar 31, 2022
Windows Media Center Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2021-40441
was published
Dec 16, 2021
Microsoft Defender for IOT Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2021-42312
was published
Dec 16, 2021
Windows Mobile Device Management Elevation of Privilege Vulnerability
Moderate
Unreviewed
CVE-2021-43880
was published
Dec 16, 2021
In Bluetooth, there is a possible way to access the a2dp audio control switch due to a missing...
High
Unreviewed
CVE-2021-39772
was published
Mar 31, 2022
In Telecomm, there is a possible way to determine whether an app is installed, without query...
Moderate
Unreviewed
CVE-2021-39778
was published
Mar 31, 2022
In PermissionController, there is a possible way to delete some local files due to an unsafe...
High
Unreviewed
CVE-2021-39746
was published
Mar 31, 2022
In Bubbles, there is a possible way to interfere with Bubbles due to a permissions bypass. This...
High
Unreviewed
CVE-2021-39752
was published
Mar 31, 2022
Improper handling of permissions of a shared memory region can lead to memory corruption in...
High
Unreviewed
CVE-2021-1942
was published
Apr 2, 2022
IBM SterlingPartner Engagement Manager 6.2.0 could allow a malicious user to elevate their...
Moderate
Unreviewed
CVE-2022-22328
was published
Apr 2, 2022
The HTTP interface of Synaman v5.1 and below was discovered to allow authenticated attackers to...
High
Unreviewed
CVE-2022-26251
was published
Apr 7, 2022
Insufficient policy enforcement in Installer in Google Chrome on Windows prior to 99.0.4844.51...
High
Unreviewed
CVE-2022-0799
was published
Apr 6, 2022
Proofpoint Enterprise Protection (PPS/PoD) contains a vulnerability which allows the pps user to...
High
Unreviewed
CVE-2022-46334
was published
Dec 21, 2022
Dell VNX2 for File version 8.1.21.266 and earlier, contain a privilege escalation vulnerability....
Moderate
Unreviewed
CVE-2021-36290
was published
Apr 9, 2022
ProTip!
Advisories are also available from the
GraphQL API