Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,942
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+

148 advisories

Loading
The Teamwire application 5.3.0 for Android allows physically proximate attackers to exploit a... Low Unreviewed
CVE-2020-12621 was published May 24, 2022
In the COVIDSafe application through 1.0.21 for Android, unsafe use of the Bluetooth transport... Low Unreviewed
CVE-2020-14292 was published May 24, 2022
An information leak vulnerability exists in Gerrit versions prior to 2.15.21, 2.16.25, 3.0.15, 3... Low Unreviewed
CVE-2020-8919 was published May 24, 2022
Information leak in Gerrit Low
CVE-2020-8920 was published for com.google.gerrit:gerrit-plugin-api (Maven) May 24, 2022
q5438722
In AndroidManifest.xml, there is a possible permissions bypass. This could lead to local... Low Unreviewed
CVE-2020-0481 was published May 24, 2022
Improper access control vulnerability in Samsung keyboard version prior to SMR Feb-2021 Release 1... Low Unreviewed
CVE-2021-25340 was published May 24, 2022
Improper Access Control in EmailValidationView in Samsung Account prior to version 10.7.0.7 and... Low Unreviewed
CVE-2021-25351 was published May 24, 2022
Improper access control in Samsung Internet prior to version 13.2.1.70 allows physically... Low Unreviewed
CVE-2021-25366 was published May 24, 2022
IBM Spectrum Scale 5.1.0.1 could allow a local attacker to bypass the filesystem audit logging... Low Unreviewed
CVE-2021-29671 was published May 24, 2022
An Improper Access Control vulnerability in the logging component of Bitdefender Endpoint... Low Unreviewed
CVE-2020-15279 was published May 24, 2022
Improper access in Notification setting prior to SMR JUN-2021 Release 1 allows physically... Low Unreviewed
CVE-2021-25409 was published May 24, 2022
Intent redirection vulnerability in Samsung Account prior to version 10.8.0.4 in Android P(9.0)... Low Unreviewed
CVE-2021-25403 was published May 24, 2022
Bootloader contains a vulnerability in access permission settings where unauthorized software may... Low Unreviewed
CVE-2021-34396 was published May 24, 2022
Improper access control vulnerability in Samsung Members prior to versions 2.4.85.11 in Android O... Low Unreviewed
CVE-2021-25439 was published May 24, 2022
Improper Access Control vulnerability in web service of Secomea SiteManager allows local attacker... Low Unreviewed
CVE-2021-32002 was published May 24, 2022
Certain Arm products before 2021-08-23 do not properly consider the effect of exceptions on a... Low Unreviewed
CVE-2021-35465 was published May 24, 2022
An improper authorization vulnerability in the Palo Alto Networks Cortex XSOAR server enables an... Low Unreviewed
CVE-2021-3049 was published May 24, 2022
An improper access control vulnerability in BluetoothSettingsProvider prior to SMR Oct-2021... Low Unreviewed
CVE-2021-25472 was published May 24, 2022
A component of the HarmonyOS has a Exposure of Sensitive Information to an Unauthorized Actor... Low Unreviewed
CVE-2021-22468 was published May 24, 2022
An improper access control vulnerability in SCloudBnRReceiver in SecTelephonyProvider prior to... Low Unreviewed
CVE-2021-25501 was published May 24, 2022
This issue was addressed with improved setting propagation. This issue is fixed in iOS 13.3.1 and... Low Unreviewed
CVE-2020-3873 was published May 24, 2022
An issue has been discovered in GitLab EE affecting all versions starting from 12.2 prior to 14... Low Unreviewed
CVE-2022-1981 was published Jul 2, 2022
Improper authorization in isemtelephony prior to SMR Jul-2022 Release 1 allows attacker to obtain... Low Unreviewed
CVE-2022-30757 was published Jul 13, 2022
Information exposure in Calendar prior to version 12.3.05.10000 allows attacker to access... Low Unreviewed
CVE-2022-33705 was published Jul 13, 2022
IBM Datapower Gateway 10.0.2.0 through 10.0.4.0, 10.0.1.0 through 10.0.1.5, and 2018.4.1.0... Low Unreviewed
CVE-2022-22326 was published Aug 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database