GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,614
Composer 4,224
Erlang 31
GitHub Actions 19
Go 1,990
Maven 5,170
npm 3,706
NuGet 661
pip 3,336
Pub 11
RubyGems 884
Rust 845
Swift 36

Unreviewed advisories

All unreviewed 234,416

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

75 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability was found in Beijing Baichuo Smart S85F Management Platform up to 20230816. It... Low Unreviewed

CVE-2023-4546 was published Aug 26, 2023

Improper access control in Samsung Telecom prior to SMR Aug-2023 Release 1 allows local attackers... Low Unreviewed

CVE-2023-30684 was published Aug 10, 2023

Improper access control vulnerability in Telecom prior to SMR Aug-2023 Release 1 allows local... Low Unreviewed

CVE-2023-30685 was published Aug 10, 2023

Improper access control in Telecom prior to SMR Aug-2023 Release 1 allows local attackers to call... Low Unreviewed

CVE-2023-30682 was published Aug 10, 2023

Improper access control in Telecom prior to SMR Aug-2023 Release 1 allows local attackers to call... Low Unreviewed

CVE-2023-30683 was published Aug 10, 2023

Improper access control in Audio system service prior to SMR Jul-2023 Release 1 allows attacker... Low Unreviewed

CVE-2023-30667 was published Jul 6, 2023

Improper access control vulnerability in PersonaManagerService prior to SMR Jul-2023 Release 1... Low Unreviewed

CVE-2023-30640 was published Jul 6, 2023

Improper access control vulnerability in clearAllGlobalProxy in MiscPolicy prior to SMR Nov-2022... Low Unreviewed

CVE-2022-39887 was published Nov 10, 2022

Improper access control vulnerability in QuickShare prior to version 13.2.3.5 allows attackers to... Low Unreviewed

CVE-2022-39860 was published Oct 7, 2022

Improper access control vulnerability in Telecom application prior to SMR Sep-2022 Release 1... Low Unreviewed

CVE-2022-36856 was published Sep 10, 2022

Improper access control vulnerability in WebApp in Cameralyzer prior to versions 3.2.22, 3.3.22,... Low Unreviewed

CVE-2022-36832 was published Aug 6, 2022

Improper authentication vulnerability in AppLock prior to SMR Aug-2022 Release 1 allows physical... Low Unreviewed

CVE-2022-33720 was published Aug 6, 2022

Improper access control vulnerability in Samsung Gallery prior to version 13.1.05.8 allows... Low Unreviewed

CVE-2022-33706 was published Jul 13, 2022

Improper access control vulnerability in KnoxCustomManagerService prior to SMR Jul-2022 Release 1... Low Unreviewed

CVE-2022-33701 was published Jul 13, 2022

Improper access control vulnerability in sendDHCPACKBroadcast function of SemWifiApClient prior... Low Unreviewed

CVE-2022-30751 was published Jul 13, 2022

Improper access control vulnerability in updateLastConnectedClientInfo function of... Low Unreviewed

CVE-2022-30750 was published Jul 13, 2022

Improper access control vulnerability in sendDHCPACKBroadcast function of SemWifiApClient prior... Low Unreviewed

CVE-2022-30752 was published Jul 13, 2022

cPanel before 66.0.2 allows demo accounts to create databases and users (SEC-271). Low Unreviewed

CVE-2017-18421 was published May 24, 2022

cPanel before 68.0.15 allows jailed accounts to restore files that are outside of the jail (SEC... Low Unreviewed

CVE-2017-18384 was published May 24, 2022

Mozilla Firefox OS before 2.2 allows physically proximate attackers to bypass the pass-code... Low Unreviewed

CVE-2015-5960 was published May 17, 2022

The Colorbox module 7.x-2.x before 7.x-2.10 for Drupal allows remote authenticated users with... Low Unreviewed

CVE-2015-7881 was published May 17, 2022

The chunked upload API (ApiUpload) in MediaWiki before 1.23.11, 1.24.x before 1.24.4, and 1.25.x... Low Unreviewed

CVE-2015-8001 was published May 17, 2022

The Gemalto SafeNet Luna HSM allows remote authenticated users to bypass intended key-export... Low Unreviewed

CVE-2015-5464 was published May 17, 2022

runmqsc in IBM WebSphere MQ 8.x before 8.0.0.5 allows local users to bypass intended queue... Low Unreviewed

CVE-2015-7473 was published May 17, 2022

SpringBoard in Apple iOS before 9 allows physically proximate attackers to bypass a lock-screen... Low Unreviewed

CVE-2015-5861 was published May 17, 2022

Previous 1 2 3 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

75 advisories