Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,873
Erlang
37
GitHub Actions
36
Go
2,518
Maven
5,000+
npm
4,156
NuGet
736
pip
3,955
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,205 advisories

Loading
An issue in the installer of gvim 9.0.0000 allows authenticated attackers to execute arbitrary... High Unreviewed
CVE-2022-37173 was published Aug 31, 2022
The Samba AD DC includes checks when adding service principals names (SPNs) to an account to... High Unreviewed
CVE-2022-0336 was published Aug 29, 2022
Insecure Permissions in administration interface in Planex MZK-DP150N 1.42 and 1.43 allows... High Unreviewed
CVE-2021-37289 was published Aug 23, 2022
Incorrect default permissions for the Intel(R) Connect M Android application before version 1.7.4... Moderate Unreviewed
CVE-2021-44470 was published Aug 19, 2022
Authentication bypass for the Open AMT Cloud Toolkit software maintained by Intel(R) before... Critical Unreviewed
CVE-2022-25899 was published Aug 19, 2022
Incorrect default permissions in the installation binaries for Intel(R) SEAPI all versions may... High Unreviewed
CVE-2022-26344 was published Aug 19, 2022
Incorrect default permissions for the Intel(R) Support Android application before 21.07.40 may... Moderate Unreviewed
CVE-2022-27500 was published Aug 19, 2022
upsMonitor in ViewPower (aka ViewPowerHTML) 1.04-21012 through 1.04-21353 has insecure... High Unreviewed
CVE-2021-30490 was published Aug 17, 2022
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.5, 6.1.0.0 through 6.1.0.4,... Moderate Unreviewed
CVE-2021-39087 was published Aug 17, 2022
In ConnectivityService, there is a possible bypass of network permissions due to a missing... Moderate Unreviewed
CVE-2022-20341 was published Aug 13, 2022
In PackageManager, there is a possible way to determine whether an app is installed due to a... Low Unreviewed
CVE-2022-20328 was published Aug 13, 2022
In PackageManager, there is a possible installed package disclosure due to a missing permission... Moderate Unreviewed
CVE-2022-20322 was published Aug 13, 2022
In ContentService, there is a possible way to check if an account exists on the device due to a... Moderate Unreviewed
CVE-2022-20298 was published Aug 13, 2022
In Telecomm, there is a possible disclosure of registered self managed phone accounts due to a... Low Unreviewed
CVE-2022-20310 was published Aug 13, 2022
In Content, there is a possible way to check if an account exists on the device due to a missing... Moderate Unreviewed
CVE-2022-20301 was published Aug 13, 2022
In ContentService, there is a possible way to check if the given account exists on the device due... Moderate Unreviewed
CVE-2022-20299 was published Aug 13, 2022
In ContentService, there is a possible way to determine if an account is on the device without... Moderate Unreviewed
CVE-2022-20303 was published Aug 13, 2022
In Wi-Fi, there is a possible way to retrieve the WiFi SSID without location permissions due to a... Low Unreviewed
CVE-2022-20327 was published Aug 13, 2022
In WifiP2pManager, there is a possible toobtain WiFi P2P MAC address without user consent due to... Moderate Unreviewed
CVE-2022-20312 was published Aug 13, 2022
In Content, there is a possible way to learn about an account present on the device due to a... Moderate Unreviewed
CVE-2022-20294 was published Aug 13, 2022
In Content, there is a possible way to check if the given account exists on the device due to a... Moderate Unreviewed
CVE-2022-20300 was published Aug 13, 2022
In ContentService, there is a possible disclosure of available account types due to a missing... Low Unreviewed
CVE-2022-20305 was published Aug 13, 2022
In Telecomm, there is a possible disclosure of registered self managed phone accounts due to a... Low Unreviewed
CVE-2022-20311 was published Aug 13, 2022
In ActivityManager, there is a possible disclosure of installed packages due to a missing... Low Unreviewed
CVE-2022-20315 was published Aug 13, 2022
In ContentService, there is a possible way to check if an account exists on the device due to a... Moderate Unreviewed
CVE-2022-20295 was published Aug 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database