Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,150
NuGet
736
pip
3,952
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

847 advisories

Loading
muc.lib.lua in Prosody 0.11.0 through 0.11.9 allows remote attackers to obtain sensitive... High Unreviewed
CVE-2021-37601 was published May 24, 2022
IBM Security Verify Access Docker 10.0.0 could reveal highly sensitive information to a local... Moderate Unreviewed
CVE-2021-20500 was published May 24, 2022
SAP NetWeaver ABAP Server and ABAP Platform, versions - 700, 702, 730, 731, 804, 740, 750, 784,... High Unreviewed
CVE-2021-33677 was published May 24, 2022
Microsoft discovered a remote code execution (RCE) vulnerability in the SolarWinds Serv-U product... Critical Unreviewed
CVE-2021-35211 was published May 24, 2022
An issue was discovered in Ruby through 2.6.7, 2.7.x through 2.7.3, and 3.x through 3.0.1. A... Moderate Unreviewed
CVE-2021-31810 was published May 24, 2022
Incorrect Access Control vulnerability in PbootCMS 2.0.6 via the list parameter in the update... Moderate Unreviewed
CVE-2020-22535 was published May 24, 2022
Information exposure vulnerability in Samsung Members prior to versions 2.4.85.11 in Android O(8... Low Unreviewed
CVE-2021-25432 was published May 24, 2022
IBM Guardium Data Encryption (GDE) 3.0.0.3 and 4.0.0.4 could allow a remote attacker to obtain... Moderate Unreviewed
CVE-2021-20416 was published May 24, 2022
In MediaWiki before 1.31.15, 1.32.x through 1.35.x before 1.35.3, and 1.36.x before 1.36.1, bots... High Unreviewed
CVE-2021-35197 was published May 24, 2022
An issue exists within Akkadian Provisioning Manager 4.50.02 which allows attackers to view... High Unreviewed
CVE-2020-27361 was published May 24, 2022
** DISPUTED ** TensorFlow through 2.5.0 allows attackers to overwrite arbitrary files via a... Critical Unreviewed
CVE-2021-35958 was published May 24, 2022
In Artica Pandora FMS <=754 in the File Manager component, there is sensitive information exposed... Moderate Unreviewed
CVE-2021-34075 was published May 24, 2022
Istio before 1.9.6 and 1.10.x before 1.10.2 has Incorrect Access Control. High Unreviewed
CVE-2021-34824 was published May 24, 2022
Adobe Premiere Elements version 5.2 (and earlier) is affected by an insecure temporary file... Moderate Unreviewed
CVE-2021-28623 was published May 24, 2022
Adobe Photoshop Elements version 5.2 (and earlier) is affected by an insecure temporary file... Moderate Unreviewed
CVE-2021-28597 was published May 24, 2022
Incorrect Access Control for linked Tickets in Zammad 1.0.x up to 4.0.0 allows remote attackers... Moderate Unreviewed
CVE-2021-35302 was published May 24, 2022
Incorrect Access Control in Zammad 1.0.x up to 4.0.0 allows remote attackers to obtain sensitive... Moderate Unreviewed
CVE-2021-35301 was published May 24, 2022
Incorrect Access Control in Zammad 1.0.x up to 4.0.0 allows attackers to obtain sensitive... High Unreviewed
CVE-2021-35299 was published May 24, 2022
An Arbitrary Address Write issue in the Autodesk DWG application can allow a malicious user to... Moderate Unreviewed
CVE-2021-27043 was published May 24, 2022
NVIDIA GeForce Experience, all versions prior to 3.23, contains a vulnerability where, if a user... High Unreviewed
CVE-2021-1073 was published May 24, 2022
A potential vulnerability has been identified in HPE OneView Global Dashboard release 2.31 which... Moderate Unreviewed
CVE-2021-26585 was published May 24, 2022
A compromised content process could have performed session history manipulations it should not... Moderate Unreviewed
CVE-2021-24001 was published May 24, 2022
When a download was initiated, the client did not check whether it was in normal or private... Moderate Unreviewed
CVE-2021-29958 was published May 24, 2022
An information disclosure vulnerability was discovered in the directory and file management of... Moderate Unreviewed
CVE-2021-25652 was published May 24, 2022
In getEndItemSliceAction of MediaOutputSlice.java, there is a possible permission bypass due to... Moderate Unreviewed
CVE-2021-0552 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database