GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,931
Composer 4,871
Erlang 37
GitHub Actions 36
Go 2,517
Maven 5,956
npm 4,150
NuGet 736
pip 3,952
Pub 12
RubyGems 946
Rust 1,026
Swift 39

Unreviewed advisories

All unreviewed 269,973

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,204 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

When using an object storage like S3 as the file store, when a user creates a public link to a... Moderate Unreviewed

CVE-2020-16144 was published May 24, 2022

Agents are able to see and link Config Items without permissions, which are defined in General... Moderate Unreviewed

CVE-2021-21436 was published May 24, 2022

In JetBrains YouTrack before 2020.4.4701, an attacker could enumerate users via the REST API... Moderate Unreviewed

CVE-2020-25208 was published May 24, 2022

An issue was discovered in SeTracker2 for TK-Star Q90 Junior GPS horloge 3.1042.9.8656 devices.... Critical Unreviewed

CVE-2019-20468 was published May 24, 2022

A local (authenticated) low-privileged user can exploit a behavior in an ESET installer to... Moderate Unreviewed

CVE-2020-26941 was published May 24, 2022

NVIDIA GPU Display Driver for Linux, all versions, contains a vulnerability in the kernel mode... High Unreviewed

CVE-2021-1056 was published May 24, 2022

In Gotenberg through 6.2.1, insecure permissions for tini (writable by user gotenberg)... Critical Unreviewed

CVE-2020-13452 was published May 24, 2022

An exploitable local privilege elevation vulnerability exists in the file system permissions of... High Unreviewed

CVE-2020-13541 was published May 24, 2022

An exploitable local privilege elevation vulnerability exists in the file system permissions of... High Unreviewed

CVE-2020-13540 was published May 24, 2022

Dell Wyse ThinOS 8.6 and prior versions contain an insecure default configuration vulnerability.... High Unreviewed

CVE-2020-29491 was published May 24, 2022

Dell Wyse ThinOS 8.6 and prior versions contain an insecure default configuration vulnerability.... Critical Unreviewed

CVE-2020-29492 was published May 24, 2022

An issue was discovered in Zammad before 3.4.1. The global-search feature leaks Knowledge Base... Moderate Unreviewed

CVE-2020-26031 was published May 24, 2022

A privilege escalation vulnerability exists in Kepware LinkMaster 3.0.94.0. In its default... High Unreviewed

CVE-2020-13535 was published May 24, 2022

In SELinux policies of mls, there is a missing permission check. This could lead to local... Low Unreviewed

CVE-2020-27056 was published May 24, 2022

In getGpuStatsGlobalInfo and getGpuStatsAppInfo of GpuService.cpp, there is a possible permission... Low Unreviewed

CVE-2020-27057 was published May 24, 2022

In broadcastWifiCredentialChanged of ClientModeImpl.java, there is a possible location permission... Moderate Unreviewed

CVE-2020-27053 was published May 24, 2022

In postNotification of ServiceRecord.java, there is a possible permission bypass due to an unsafe... Moderate Unreviewed

CVE-2020-27039 was published May 24, 2022

In openAssetFileListener of ContactsProvider2.java, there is a possible permission bypass due to... High Unreviewed

CVE-2020-0486 was published May 24, 2022

In areFunctionsSupported of UsbBackend.java, there is a possible access to tethering from a guest... High Unreviewed

CVE-2020-0485 was published May 24, 2022

In createInputConsumer of WindowManagerService.java, there is a possible way to block and... High Unreviewed

CVE-2020-0475 was published May 24, 2022

In sendConfiguredNetworkChangedBroadcast of WifiConfigManager.java, there is a possible leak of... Low Unreviewed

CVE-2020-0459 was published May 24, 2022

In listen() and related functions of TelephonyRegistry.java, there is a possible permissions... Moderate Unreviewed

CVE-2020-0468 was published May 24, 2022

In createVirtualDisplay of DisplayManagerService.java, there is a possible way to create a... High Unreviewed

CVE-2020-0440 was published May 24, 2022

inSync Client installer for macOS versions v6.8.0 and prior could allow an attacker to gain... High Unreviewed

CVE-2020-5798 was published May 24, 2022

Kia Motors Head Unit with Software version: SOP.003.30.18.0703, SOP.005.7.181019, and SOP.007.1... High Unreviewed

CVE-2020-8539 was published May 24, 2022

Previous 1…35…49 Next

Previous 1 2 … 33 34 35 36 37 … 48 49 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,204 advisories