Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,793
Erlang
36
GitHub Actions
29
Go
2,380
Maven
5,000+
npm
4,004
NuGet
720
pip
3,803
Pub
12
RubyGems
927
Rust
985
Swift
38
Unreviewed advisories
All unreviewed
5,000+

566 advisories

Loading
Acme mini_httpd before 1.16 allows remote attackers to view sensitive files under the document... Moderate Unreviewed
CVE-2001-0893 was published Apr 30, 2022
cifs-utils through 6.14, with verbose logging, can cause an information leak when a file contains... Moderate Unreviewed
CVE-2022-29869 was published Apr 29, 2022
An access control issue in Zammad v5.0.3 broadcasts administrative configuration changes to all... Moderate Unreviewed
CVE-2022-27331 was published Apr 28, 2022
IBM QRadar SIEM 7.3, 7.4, and 7.5 allows for users to access information across tenant and domain... Moderate Unreviewed
CVE-2021-38874 was published Apr 28, 2022
LibreOffice and OpenOffice automatically open embedded content Moderate Unreviewed
CVE-2012-5639 was published Apr 23, 2022
IBM Cognos Analytics 11.1.7, 11.2.0, and 11.1.7 could allow a remote attacker to obtain... Moderate Unreviewed
CVE-2021-38904 was published Apr 23, 2022
IBM Cognos Analytics 11.1.7, 11.2.0, and 11.1.7 could allow an authenticated user to view report... Moderate Unreviewed
CVE-2021-38905 was published Apr 23, 2022
Mounting /proc filesystem via chroot command silently mounts it in read-write mode. The user... Moderate Unreviewed
CVE-2008-2544 was published Apr 21, 2022
Mutt before 1.5.20 patch 7 allows an attacker to cause a denial of service via a series of... Moderate Unreviewed
CVE-2005-2351 was published Apr 21, 2022
An Access Control vulnerability exists in Desire2Learn/D2L Learning Management System (LMS) 20.21... Moderate Unreviewed
CVE-2021-43129 was published Apr 20, 2022
Improper Control of a Resource Through its Lifetime in Mattermost Moderate
CVE-2022-1385 was published for github.com/mattermost/mattermost-server/v6 (Go) Apr 20, 2022
Zoho ManageEngine Remote Access Plus before 10.1.2137.15 allows guest users to view domain... Moderate Unreviewed
CVE-2022-26653 was published Apr 17, 2022
Zoho ManageEngine Remote Access Plus before 10.1.2137.15 allows guest users to view license details. Moderate Unreviewed
CVE-2022-26777 was published Apr 17, 2022
Windows DNS Server Information Disclosure Vulnerability. Moderate Unreviewed
CVE-2022-26816 was published Apr 16, 2022
An issue was discovered in Amazon AWS VPN Client 2.0.0. A TOCTOU race condition exists during the... Moderate Unreviewed
CVE-2022-25165 was published Apr 15, 2022
Exposure of Resource to Wrong Sphere in Simple-Wayland-HotKey-Daemon Moderate
CVE-2022-27817 was published for Simple-Wayland-HotKey-Daemon (Rust) Apr 15, 2022
VMware Workspace ONE Access, Identity Manager and vRealize Automation contain an information... Moderate Unreviewed
CVE-2022-22961 was published Apr 14, 2022
A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23... Moderate Unreviewed
CVE-2022-25650 was published Apr 13, 2022
In l2cble_process_sig_cmd of l2c_ble.cc, there is a possible out of bounds read due to a missing... Moderate Unreviewed
CVE-2021-39805 was published Apr 13, 2022
Dell PowerScale OneFS, 8.2,x, 9.1.0.x, 9.2.1.x, and 9.3.0.x contain a denial of service... Moderate Unreviewed
CVE-2022-23163 was published Apr 13, 2022
Information exposure vulnerability in Samsung DeX Home prior to SMR April-2022 Release 1 allows... Moderate Unreviewed
CVE-2022-27576 was published Apr 12, 2022
Information exposure vulnerability in One UI Home prior to SMR April-2022 Release 1 allows to... Moderate Unreviewed
CVE-2022-27575 was published Apr 12, 2022
Information exposure vulnerability in ril property setting prior to SMR April-2022 Release 1... Moderate Unreviewed
CVE-2022-27822 was published Apr 12, 2022
Reprise License Manager 14.2 is affected by an Information Disclosure vulnerability via a GET... Moderate Unreviewed
CVE-2022-28365 was published Apr 10, 2022
Policy bypass in COOP in Google Chrome prior to 98.0.4758.80 allowed a remote attacker to bypass... Moderate Unreviewed
CVE-2022-0461 was published Apr 6, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database