Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,855
Erlang
36
GitHub Actions
35
Go
2,481
Maven
5,000+
npm
4,102
NuGet
734
pip
3,915
Pub
12
RubyGems
945
Rust
1,017
Swift
39
Unreviewed advisories
All unreviewed
5,000+

148 advisories

Loading
A bug in Bluez may allow for the Bluetooth Discoverable state being set to on when no Bluetooth... Low Unreviewed
CVE-2018-10910 was published May 13, 2022
An Improper Access Control vulnerability in the logging component of Bitdefender Endpoint... Low Unreviewed
CVE-2020-15279 was published May 24, 2022
Huawei smartphones with software Victoria-AL00 8.0.0.336a(C00) have an information leakage... Low Unreviewed
CVE-2018-7957 was published May 13, 2022
An improper access control vulnerability in BluetoothSettingsProvider prior to SMR Oct-2021... Low Unreviewed
CVE-2021-25472 was published May 24, 2022
Privilege escalation by backend users assigned to the default "Publisher" system role Low
CVE-2020-15248 was published for october/backend (Composer) Nov 23, 2020
Improper access control vulnerability in Samsung keyboard version prior to SMR Feb-2021 Release 1... Low Unreviewed
CVE-2021-25340 was published May 24, 2022
Improper Access Control in EmailValidationView in Samsung Account prior to version 10.7.0.7 and... Low Unreviewed
CVE-2021-25351 was published May 24, 2022
Improper access control in Samsung Internet prior to version 13.2.1.70 allows physically... Low Unreviewed
CVE-2021-25366 was published May 24, 2022
A vulnerability in the Graphite interface of Cisco HyperFlex software could allow an... Low Unreviewed
CVE-2019-1667 was published May 13, 2022
An issue has been discovered in GitLab EE affecting all versions before 15.0.5, all versions... Low Unreviewed
CVE-2022-2459 was published Aug 6, 2022
An issue has been discovered in GitLab CE/EE affecting all versions before 15.0.5, all versions... Low Unreviewed
CVE-2022-2456 was published Aug 6, 2022
Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may... Low Unreviewed
CVE-2021-23188 was published Aug 19, 2022
An issue was discovered in Blue Prism Enterprise 6.0 through 7.01. In a misconfigured environment... Low Unreviewed
CVE-2022-36117 was published Aug 26, 2022
In Settings, there is a possible way for an application without permissions to read content of... Low Unreviewed
CVE-2022-20321 was published Aug 13, 2022
This issue was addressed with improved setting propagation. This issue is fixed in iOS 13.3.1 and... Low Unreviewed
CVE-2020-3873 was published May 24, 2022
A component of the HarmonyOS has a Exposure of Sensitive Information to an Unauthorized Actor... Low Unreviewed
CVE-2021-22468 was published May 24, 2022
In AndroidManifest.xml, there is a possible permissions bypass. This could lead to local... Low Unreviewed
CVE-2020-0481 was published May 24, 2022
An information leak vulnerability exists in Gerrit versions prior to 2.15.21, 2.16.25, 3.0.15, 3... Low Unreviewed
CVE-2020-8919 was published May 24, 2022
In the COVIDSafe application through 1.0.21 for Android, unsafe use of the Bluetooth transport... Low Unreviewed
CVE-2020-14292 was published May 24, 2022
The Teamwire application 5.3.0 for Android allows physically proximate attackers to exploit a... Low Unreviewed
CVE-2020-12621 was published May 24, 2022
An issue was discovered in LinuxTV xawtv before 3.107. The function dev_open() in v4l-conf.c does... Low Unreviewed
CVE-2020-13696 was published May 24, 2022
An improper authorization while processing the provisioning data.Product: AndroidVersions:... Low Unreviewed
CVE-2020-0064 was published May 24, 2022
HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.185(C00E74R3P8) have an improper... Low Unreviewed
CVE-2020-1797 was published May 24, 2022
An improper authorization in the receiver component of Email.Product: AndroidVersions: Android... Low Unreviewed
CVE-2020-0090 was published May 24, 2022
An improper authorization in the receiver component of the Android Suite Daemon.Product:... Low Unreviewed
CVE-2020-0065 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database