Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,963
Erlang
39
GitHub Actions
38
Go
2,615
Maven
5,000+
npm
4,255
NuGet
760
pip
4,036
Pub
12
RubyGems
953
Rust
1,049
Swift
45
Unreviewed advisories
All unreviewed
5,000+

83 advisories

Loading
Apport reads and writes information on a crashed process to /proc/pid with elevated privileges.... Low Unreviewed
CVE-2019-15790 was published May 24, 2022
An elevation of privilege vulnerability exists when Connected User Experiences and Telemetry... Low Unreviewed
CVE-2020-0942 was published May 24, 2022
An elevation of privilege vulnerability exists when a Windows scheduled task improperly handles... Low Unreviewed
CVE-2020-0936 was published May 24, 2022
An elevation of privilege vulnerability exists when the Visual Studio Extension Installer Service... Low Unreviewed
CVE-2020-0900 was published May 24, 2022
An elevation of privilege vulnerability exists when Microsoft Visual Studio updater service... Low Unreviewed
CVE-2020-0899 was published May 24, 2022
An elevation of privilege vulnerability exists when Windows Mobile Device Management (MDM)... Low Unreviewed
CVE-2020-0854 was published May 24, 2022
In smsSelected of AnswerFragment.java, there is a way to send an SMS from the lock screen due to... Low Unreviewed
CVE-2020-0052 was published May 24, 2022
Symantec Endpoint Protection (SEP) and Symantec Endpoint Protection Small Business Edition (SEP... Low Unreviewed
CVE-2020-5825 was published May 24, 2022
An issue was discovered in PRTG 7.x through 19.4.53. Due to insufficient access control on local... Low Unreviewed
CVE-2019-19119 was published May 24, 2022
The apt-cacher-ng package of openSUSE Leap 15.1 runs operations in user owned directory /run/apt... Low Unreviewed
CVE-2019-18899 was published May 24, 2022
An issue was discovered in Cyrus IMAP before 2.5.15, 3.0.x before 3.0.13, and 3.1.x through 3.1.8... Low Unreviewed
CVE-2019-19783 was published May 24, 2022
Improper directory permissions in Intel(R) PROSet/Wireless WiFi Software before version 21.40 may... Low Unreviewed
CVE-2019-11154 was published May 24, 2022
IBM WebSphere eXtreme Scale 8.6 Admin Console allows web pages to be stored locally which can be... Low Unreviewed
CVE-2019-4112 was published May 24, 2022
IBM Cognos Controller 10.2.0, 10.2.1, 10.3.0, 10.3.1, and 10.4.0 allows web pages to be stored... Low Unreviewed
CVE-2019-4174 was published May 24, 2022
IBM Cognos Controller 10.2.0, 10.2.1, 10.3.0, 10.3.1, and 10.4.0 allows web pages to be stored... Low Unreviewed
CVE-2019-4177 was published May 24, 2022
IBM Security Information Queue (ISIQ) 1.0.0, 1.0.1, and 1.0.2 allows web pages to be stored... Low Unreviewed
CVE-2019-4218 was published May 24, 2022
IBM Maximo Asset Management 7.6 could allow a physical user of the system to obtain sensitive... Low Unreviewed
CVE-2019-4048 was published May 24, 2022
Inappropriate implementation in image-burner in Google Chrome OS prior to 59.0.3071.92 allowed a... Low Unreviewed
CVE-2017-5084 was published May 13, 2022
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 10.1, 10.5, and 11.1 could... Low Unreviewed
CVE-2017-1150 was published May 13, 2022
Vulnerability in the RDBMS Security component of Oracle Database Server. Supported versions that... Low Unreviewed
CVE-2017-10292 was published May 13, 2022
The Crypto API in the Linux kernel before 3.18.5 allows local users to load arbitrary kernel... Low Unreviewed
CVE-2013-7421 was published May 13, 2022
The Crypto API in the Linux kernel before 3.18.5 allows local users to load arbitrary kernel... Low Unreviewed
CVE-2014-9644 was published May 13, 2022
rsync, when running in daemon mode, does not properly call setgroups before dropping privileges,... Low Unreviewed
CVE-2002-0080 was published Apr 30, 2022
gzip before 1.3 in Solaris 8, when called with the -f or -force flags, will change the... Low Unreviewed
CVE-2004-1349 was published Apr 29, 2022
Escalation of privileges vulnerability in Micro Focus in Micro Focus Operations Agent, affecting... Low Unreviewed
CVE-2021-38129 was published Jan 26, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database