GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
105 advisories
Filter by severity
Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow a locally...
High
Unreviewed
CVE-2017-8494
was published
May 13, 2022
Graphics in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows...
High
Unreviewed
CVE-2017-8467
was published
May 13, 2022
Windows Cursor in Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold,...
High
Unreviewed
CVE-2017-8466
was published
May 13, 2022
Microsoft Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, Windows 10 Gold, 1511, 1607,...
High
Unreviewed
CVE-2017-8465
was published
May 13, 2022
Windows kernel in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows...
High
Unreviewed
CVE-2017-8561
was published
May 13, 2022
Podman publishes a malicious image to public registries
High
CVE-2022-1227
was published
for
github.com/containers/podman/v3
(Go)
Apr 30, 2022
A flaw was found in 3Scale APICast in versions prior to 2.11.0, where it incorrectly identified...
High
Unreviewed
CVE-2021-3523
was published
Apr 28, 2022
Dell PowerScale OneFS, versions 8.2.x, 9.0.0.x, 9.1.0.x, 9.2.0.x, 9.2.1.x, and 9.3.0.x, contain...
High
Unreviewed
CVE-2022-24428
was published
Apr 9, 2022
An unauthorized access to the execution of the setuid file with capabilities flaw in the Linux...
High
Unreviewed
CVE-2021-3847
was published
Apr 3, 2022
In checkFileUriDestination of DownloadProvider.java, there is a possible way to bypass external...
High
Unreviewed
CVE-2021-39697
was published
Mar 17, 2022
In createOrUpdate of BasePermission.java, there is a possible permission bypass due to a logic...
High
Unreviewed
CVE-2021-39695
was published
Mar 17, 2022
In deleteNotificationChannelGroup of NotificationManagerService.java, there is a possible way to...
High
Unreviewed
CVE-2021-39704
was published
Mar 17, 2022
Heimdal.Wizard.exe installer in Heimdal Premium Security 2.5.395 and earlier has insecure...
High
Unreviewed
CVE-2022-24618
was published
Mar 11, 2022
Plesk CMS 18.0.37 is affected by an insecure permissions vulnerability that allows privilege...
High
Unreviewed
CVE-2021-45008
was published
Feb 22, 2022
Improper permissions in the SafeNet Sentinel driver for Intel(R) Quartus(R) Prime Standard...
High
Unreviewed
CVE-2022-21203
was published
Feb 11, 2022
In GBoard, there is a possible way to bypass Factory Reset Protection due to a missing permission...
High
Unreviewed
CVE-2021-39622
was published
Jan 15, 2022
Unprivileged pod using `hostPath` can side-step active LSM when it is SELinux
High
CVE-2021-43816
was published
for
github.com/containerd/containerd
(Go)
Jan 6, 2022
Possible access control violation while setting current permission for VMIDs due to improper...
High
Unreviewed
CVE-2021-30279
was published
Jan 4, 2022
In requestChannelBrowsable of TvInputManagerService.java, there is a possible permission bypass...
High
Unreviewed
CVE-2021-0927
was published
Dec 16, 2021
In setOnClickActivityIntent of SearchWidgetProvider.java, there is a possible way to access...
High
Unreviewed
CVE-2021-0953
was published
Dec 16, 2021
In AndroidManifest.xml of Settings, there is a possible pairing of a Bluetooth device without...
High
Unreviewed
CVE-2021-0965
was published
Dec 16, 2021
In onReceive of AlertReceiver.java, there is a possible way to dismiss system dialog due to a...
High
Unreviewed
CVE-2021-0985
was published
Dec 16, 2021
In the broadcast definition in AndroidManifest.xml, there is a possible way to set the A2DP...
High
Unreviewed
CVE-2021-0999
was published
Dec 16, 2021
In getConfiguredNetworks of WifiServiceImpl.java, there is a possible way to determine whether an...
High
Unreviewed
CVE-2021-1004
was published
Dec 16, 2021
There is a Permission control vulnerability in Huawei Smartphone.Successful exploitation of this...
High
Unreviewed
CVE-2021-37044
was published
Dec 9, 2021
ProTip!
Advisories are also available from the
GraphQL API