Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+

103 advisories

Loading
Improper Authorization vulnerability in Video Editor prior to SMR Sep-2022 Release 1 allows local... Low Unreviewed
CVE-2022-36852 was published Sep 10, 2022
Improper authorization in UPI payment in Samsung Pass prior to version 4.0.04.10 allows physical... Low Unreviewed
CVE-2022-36876 was published Sep 10, 2022
Improper Handling of Insufficient Permissions or Privileges vulnerability in SemChameleonHelper... Low Unreviewed
CVE-2023-21424 was published Feb 9, 2023
A bug in Bluez may allow for the Bluetooth Discoverable state being set to on when no Bluetooth... Low Unreviewed
CVE-2018-10910 was published May 13, 2022
An Improper Access Control vulnerability in the logging component of Bitdefender Endpoint... Low Unreviewed
CVE-2020-15279 was published May 24, 2022
Zoho ManageEngine SupportCenter Plus through 11024 allows low-privileged users to view the... Low Unreviewed
CVE-2022-42903 was published Nov 18, 2022
Huawei smartphones with software Victoria-AL00 8.0.0.336a(C00) have an information leakage... Low Unreviewed
CVE-2018-7957 was published May 13, 2022
An improper access control vulnerability in BluetoothSettingsProvider prior to SMR Oct-2021... Low Unreviewed
CVE-2021-25472 was published May 24, 2022
Privilege escalation by backend users assigned to the default "Publisher" system role Low
CVE-2020-15248 was published for october/backend (Composer) Nov 23, 2020
Improper Access Control in EmailValidationView in Samsung Account prior to version 10.7.0.7 and... Low Unreviewed
CVE-2021-25351 was published May 24, 2022
Improper access control vulnerability in Samsung keyboard version prior to SMR Feb-2021 Release 1... Low Unreviewed
CVE-2021-25340 was published May 24, 2022
Improper access control in Samsung Internet prior to version 13.2.1.70 allows physically... Low Unreviewed
CVE-2021-25366 was published May 24, 2022
A vulnerability in the Graphite interface of Cisco HyperFlex software could allow an... Low Unreviewed
CVE-2019-1667 was published May 13, 2022
An issue has been discovered in GitLab EE affecting all versions before 15.0.5, all versions... Low Unreviewed
CVE-2022-2459 was published Aug 6, 2022
An issue has been discovered in GitLab CE/EE affecting all versions before 15.0.5, all versions... Low Unreviewed
CVE-2022-2456 was published Aug 6, 2022
Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may... Low Unreviewed
CVE-2021-23188 was published Aug 19, 2022
An issue was discovered in Blue Prism Enterprise 6.0 through 7.01. In a misconfigured environment... Low Unreviewed
CVE-2022-36117 was published Aug 26, 2022
In Settings, there is a possible way for an application without permissions to read content of... Low Unreviewed
CVE-2022-20321 was published Aug 13, 2022
This issue was addressed with improved setting propagation. This issue is fixed in iOS 13.3.1 and... Low Unreviewed
CVE-2020-3873 was published May 24, 2022
A component of the HarmonyOS has a Exposure of Sensitive Information to an Unauthorized Actor... Low Unreviewed
CVE-2021-22468 was published May 24, 2022
In AndroidManifest.xml, there is a possible permissions bypass. This could lead to local... Low Unreviewed
CVE-2020-0481 was published May 24, 2022
An information leak vulnerability exists in Gerrit versions prior to 2.15.21, 2.16.25, 3.0.15, 3... Low Unreviewed
CVE-2020-8919 was published May 24, 2022
In the COVIDSafe application through 1.0.21 for Android, unsafe use of the Bluetooth transport... Low Unreviewed
CVE-2020-14292 was published May 24, 2022
The Teamwire application 5.3.0 for Android allows physically proximate attackers to exploit a... Low Unreviewed
CVE-2020-12621 was published May 24, 2022
Philips SureSigns VS4, A.07.107 and prior. The software does not restrict or incorrectly... Low Unreviewed
CVE-2020-16241 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database