GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,179
Erlang
31
GitHub Actions
19
Go
1,982
Maven
5,000+
npm
3,701
NuGet
656
pip
3,323
Pub
11
RubyGems
882
Rust
834
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
95 advisories
Filter by severity
Insecure inherited permissions in the Intel(R) PROSet/Wireless WiFi software installer for...
High
Unreviewed
CVE-2021-0064
was published
Nov 18, 2021
There is a Improper Preservation of Permissions vulnerability in Huawei Smartphone.Successful...
High
Unreviewed
CVE-2021-37006
was published
Nov 24, 2021
There is a Improper Preservation of Permissions vulnerability in Huawei Smartphone.Successful...
High
Unreviewed
CVE-2021-37086
was published
Dec 8, 2021
World-writable permissions on the /tmp/tmate/sessions directory in tmate-ssh-server 2.3.0 allow a...
High
Unreviewed
CVE-2021-44512
was published
Dec 8, 2021
There is a Permission control vulnerability in Huawei Smartphone.Successful exploitation of this...
High
Unreviewed
CVE-2021-37044
was published
Dec 9, 2021
In getConfiguredNetworks of WifiServiceImpl.java, there is a possible way to determine whether an...
High
Unreviewed
CVE-2021-1004
was published
Dec 16, 2021
In the broadcast definition in AndroidManifest.xml, there is a possible way to set the A2DP...
High
Unreviewed
CVE-2021-0999
was published
Dec 16, 2021
In onReceive of AlertReceiver.java, there is a possible way to dismiss system dialog due to a...
High
Unreviewed
CVE-2021-0985
was published
Dec 16, 2021
In AndroidManifest.xml of Settings, there is a possible pairing of a Bluetooth device without...
High
Unreviewed
CVE-2021-0965
was published
Dec 16, 2021
In setOnClickActivityIntent of SearchWidgetProvider.java, there is a possible way to access...
High
Unreviewed
CVE-2021-0953
was published
Dec 16, 2021
In requestChannelBrowsable of TvInputManagerService.java, there is a possible permission bypass...
High
Unreviewed
CVE-2021-0927
was published
Dec 16, 2021
Possible access control violation while setting current permission for VMIDs due to improper...
High
Unreviewed
CVE-2021-30279
was published
Jan 4, 2022
In GBoard, there is a possible way to bypass Factory Reset Protection due to a missing permission...
High
Unreviewed
CVE-2021-39622
was published
Jan 15, 2022
Improper permissions in the SafeNet Sentinel driver for Intel(R) Quartus(R) Prime Standard...
High
Unreviewed
CVE-2022-21203
was published
Feb 11, 2022
Plesk CMS 18.0.37 is affected by an insecure permissions vulnerability that allows privilege...
High
Unreviewed
CVE-2021-45008
was published
Feb 22, 2022
Heimdal.Wizard.exe installer in Heimdal Premium Security 2.5.395 and earlier has insecure...
High
Unreviewed
CVE-2022-24618
was published
Mar 11, 2022
In createOrUpdate of BasePermission.java, there is a possible permission bypass due to a logic...
High
Unreviewed
CVE-2021-39695
was published
Mar 17, 2022
In deleteNotificationChannelGroup of NotificationManagerService.java, there is a possible way to...
High
Unreviewed
CVE-2021-39704
was published
Mar 17, 2022
In checkFileUriDestination of DownloadProvider.java, there is a possible way to bypass external...
High
Unreviewed
CVE-2021-39697
was published
Mar 17, 2022
An unauthorized access to the execution of the setuid file with capabilities flaw in the Linux...
High
Unreviewed
CVE-2021-3847
was published
Apr 3, 2022
Dell PowerScale OneFS, versions 8.2.x, 9.0.0.x, 9.1.0.x, 9.2.0.x, 9.2.1.x, and 9.3.0.x, contain...
High
Unreviewed
CVE-2022-24428
was published
Apr 9, 2022
A flaw was found in 3Scale APICast in versions prior to 2.11.0, where it incorrectly identified...
High
Unreviewed
CVE-2021-3523
was published
Apr 28, 2022
Windows kernel in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows...
High
Unreviewed
CVE-2017-8561
was published
May 13, 2022
Microsoft Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, Windows 10 Gold, 1511, 1607,...
High
Unreviewed
CVE-2017-8465
was published
May 13, 2022
Graphics in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows...
High
Unreviewed
CVE-2017-8467
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API