Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,678
NuGet
645
pip
3,297
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+

2,139 advisories

Loading
There is a security protection bypass vulnerability with the modem.Successful exploitation of... High Unreviewed
CVE-2021-37109 was published Feb 11, 2022
There is an unauthorized rewriting vulnerability with the memory access management module on ACPU... Moderate Unreviewed
CVE-2021-39991 was published Feb 11, 2022
There is an unauthorized rewriting vulnerability with the memory access management module on ACPU... Moderate Unreviewed
CVE-2021-37115 was published Feb 11, 2022
Improper access control in the Intel(R) RealSense(TM) DCM before version 20210625 may allow an... Moderate Unreviewed
CVE-2021-33119 was published Feb 11, 2022
Improper access control in software for Intel(R) PROSet/Wireless Wi-Fi and Killer(TM) Wi-Fi in... Moderate Unreviewed
CVE-2021-0171 was published Feb 11, 2022
Improper access control in the Intel(R) Advisor software before version 2021.2 may allow an... High Unreviewed
CVE-2021-23152 was published Feb 11, 2022
Improper access control in software for Intel(R) PROSet/Wireless Wi-Fi and Killer(TM) Wi-Fi in... Moderate Unreviewed
CVE-2021-0167 was published Feb 11, 2022
Improper access control in firmware for Intel(R) PROSet/Wireless Wi-Fi in multiple operating... High Unreviewed
CVE-2021-0164 was published Feb 11, 2022
Improper access control in the firmware for some Intel(R) Processors may allow a privileged user... Moderate Unreviewed
CVE-2021-0124 was published Feb 11, 2022
Improper Authorization vulnerability in Link Sharing prior to version 12.4.00.3 allows attackers... Moderate Unreviewed
CVE-2022-24002 was published Feb 12, 2022
Improper access control vulnerability in Samsung SearchWidget prior to versions 2.3.00.6 in China... Low Unreviewed
CVE-2022-24923 was published Feb 12, 2022
An improper access control in LiveWallpaperService prior to versions 3.0.9.0 allows to create a... Moderate Unreviewed
CVE-2022-24924 was published Feb 12, 2022
An Improper access control vulnerability in StBedtimeModeReceiver in Wear OS 3.0 prior to... Moderate Unreviewed
CVE-2022-23994 was published Feb 12, 2022
Improper access control vulnerability in Camera prior to versions 11.1.02.16 in Android R(11), 10... Moderate Unreviewed
CVE-2022-23998 was published Feb 12, 2022
Improper access control vulnerability in Reminder prior to versions 12.3.01.3000 in Android S(12)... Moderate Unreviewed
CVE-2022-23433 was published Feb 12, 2022
Incorrect Authorization in Drupal core Moderate
CVE-2020-13676 was published for drupal/core (Composer) Feb 12, 2022
tdunlap607
Drupal core access bypass vulnerability High
CVE-2020-13677 was published for drupal/core (Composer) Feb 12, 2022
cmd/go in Go before 1.16.14 and 1.17.x before 1.17.7 can misinterpret branch names that falsely... High Unreviewed
CVE-2022-23773 was published Feb 12, 2022
When a password reset or password change flow with an authentication policy is configured and the... Moderate Unreviewed
CVE-2021-42000 was published Feb 12, 2022
Sangoma Technologies Corporation Switchvox Version 102409 is affected by an information... Moderate Unreviewed
CVE-2021-45310 was published Feb 15, 2022
antd-admin 5.5.0 is affected by an incorrect access control vulnerability. Unauthorized access to... High Unreviewed
CVE-2021-46371 was published Feb 15, 2022
Kiteworks MFT 7.5 may allow an unauthorized user to reset other users' passwords. This is fixed... Moderate Unreviewed
CVE-2022-24110 was published Feb 15, 2022
Inappropriate implementation in Autofill in Google Chrome prior to 97.0.4692.99 allowed a remote... Moderate Unreviewed
CVE-2022-0309 was published Feb 15, 2022
Inappropriate implementation in Service Worker API in Google Chrome prior to 97.0.4692.99 allowed... Moderate Unreviewed
CVE-2022-0305 was published Feb 15, 2022
nats-io/jwt not enforcing checking of Import token permissions Critical
CVE-2021-3127 was published for github.com/nats-io/jwt (Go) Feb 15, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database