GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
87 advisories
Filter by severity
Improper access control vulnerability in RCS call prior to SMR Dec-2022 Release 1 allows local...
Low
Unreviewed
CVE-2022-39903
was published
Dec 8, 2022
Zoho ManageEngine SupportCenter Plus through 11024 allows low-privileged users to view the...
Low
Unreviewed
CVE-2022-42903
was published
Nov 18, 2022
A vulnerability has been found in SourceCodester Simple Cold Storage Management System 1.0 and...
Low
Unreviewed
CVE-2022-3582
was published
Oct 18, 2022
Improper Authorization vulnerability in Photo Editor prior to SMR Sep-2022 Release 1 allows...
Low
Unreviewed
CVE-2022-36857
was published
Sep 10, 2022
Improper authorization in UPI payment in Samsung Pass prior to version 4.0.04.10 allows physical...
Low
Unreviewed
CVE-2022-36876
was published
Sep 10, 2022
Improper Authorization vulnerability in Video Editor prior to SMR Sep-2022 Release 1 allows local...
Low
Unreviewed
CVE-2022-36852
was published
Sep 10, 2022
An issue was discovered in Blue Prism Enterprise 6.0 through 7.01. In a misconfigured environment...
Low
Unreviewed
CVE-2022-36117
was published
Aug 26, 2022
Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may...
Low
Unreviewed
CVE-2021-23188
was published
Aug 19, 2022
In Settings, there is a possible way for an application without permissions to read content of...
Low
Unreviewed
CVE-2022-20321
was published
Aug 13, 2022
Byobu user preference to prevent private discussions being started are not respected
Low
CVE-2022-35921
was published
for
fof/byobu
(Composer)
Aug 6, 2022
An issue has been discovered in GitLab EE affecting all versions before 15.0.5, all versions...
Low
Unreviewed
CVE-2022-2459
was published
Aug 6, 2022
An issue has been discovered in GitLab CE/EE affecting all versions before 15.0.5, all versions...
Low
Unreviewed
CVE-2022-2456
was published
Aug 6, 2022
IBM Datapower Gateway 10.0.2.0 through 10.0.4.0, 10.0.1.0 through 10.0.1.5, and 2018.4.1.0...
Low
Unreviewed
CVE-2022-22326
was published
Aug 2, 2022
Information exposure in Calendar prior to version 12.3.05.10000 allows attacker to access...
Low
Unreviewed
CVE-2022-33705
was published
Jul 13, 2022
Improper authorization in isemtelephony prior to SMR Jul-2022 Release 1 allows attacker to obtain...
Low
Unreviewed
CVE-2022-30757
was published
Jul 13, 2022
An issue has been discovered in GitLab EE affecting all versions starting from 12.2 prior to 14...
Low
Unreviewed
CVE-2022-1981
was published
Jul 2, 2022
This issue was addressed with improved setting propagation. This issue is fixed in iOS 13.3.1 and...
Low
Unreviewed
CVE-2020-3873
was published
May 24, 2022
An improper access control vulnerability in SCloudBnRReceiver in SecTelephonyProvider prior to...
Low
Unreviewed
CVE-2021-25501
was published
May 24, 2022
A component of the HarmonyOS has a Exposure of Sensitive Information to an Unauthorized Actor...
Low
Unreviewed
CVE-2021-22468
was published
May 24, 2022
An improper access control vulnerability in BluetoothSettingsProvider prior to SMR Oct-2021...
Low
Unreviewed
CVE-2021-25472
was published
May 24, 2022
An improper authorization vulnerability in the Palo Alto Networks Cortex XSOAR server enables an...
Low
Unreviewed
CVE-2021-3049
was published
May 24, 2022
Certain Arm products before 2021-08-23 do not properly consider the effect of exceptions on a...
Low
Unreviewed
CVE-2021-35465
was published
May 24, 2022
Improper Access Control vulnerability in web service of Secomea SiteManager allows local attacker...
Low
Unreviewed
CVE-2021-32002
was published
May 24, 2022
Improper access control vulnerability in Samsung Members prior to versions 2.4.85.11 in Android O...
Low
Unreviewed
CVE-2021-25439
was published
May 24, 2022
Bootloader contains a vulnerability in access permission settings where unauthorized software may...
Low
Unreviewed
CVE-2021-34396
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API