GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,931
Composer 4,871
Erlang 37
GitHub Actions 36
Go 2,517
Maven 5,956
npm 4,150
NuGet 736
pip 3,952
Pub 12
RubyGems 946
Rust 1,026
Swift 39

Unreviewed advisories

All unreviewed 269,970

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,201 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

SAP ERP Client for E-Bilanz, version - 1.0, installation sets Incorrect default filesystem... Low Unreviewed

CVE-2020-26807 was published May 24, 2022

SAP Commerce Cloud, versions- 1808,1811,1905,2005, allows an attacker to bypass existing... Moderate Unreviewed

CVE-2020-26809 was published May 24, 2022

Incorrect default permissions in the Intel(R) DSA before version 20.8.30.6 may allow an... Moderate Unreviewed

CVE-2020-24460 was published May 24, 2022

Incorrect default permissions in the Intel(R) Board ID Tool version v.1.01 may allow an... High Unreviewed

CVE-2020-24456 was published May 24, 2022

Incorrect default permissions in Windows(R) installer in Intel(R) AMT SDK versions before 14.0.0... High Unreviewed

CVE-2020-12354 was published May 24, 2022

Improper permissions in the installer for the Intel(R) Battery Life Diagnostic Tool before... High Unreviewed

CVE-2020-12346 was published May 24, 2022

Incorrect default permissions in the Intel(R) RealSense(TM) D400 Series Dynamic Calibration Tool... High Unreviewed

CVE-2020-12306 was published May 24, 2022

Improper permissions in some Intel(R) High Definition Audio drivers before version 9.21.00.4561... High Unreviewed

CVE-2020-12307 was published May 24, 2022

In updateNotification of BeamTransferManager.java, there is a possible permission bypass due to... Moderate Unreviewed

CVE-2020-0453 was published May 24, 2022

In getPhoneAccountsForPackage of TelecomServiceImpl.java, there is a possible way to access a... Moderate Unreviewed

CVE-2020-0448 was published May 24, 2022

In CellBroadcastReceiver's intent handlers, there is a possible denial of service due to a... Moderate Unreviewed

CVE-2020-0437 was published May 24, 2022

In generatePackageInfo of PackageManagerService.java, there is a possible permissions bypass due... High Unreviewed

CVE-2020-0439 was published May 24, 2022

An exploitable local privilege elevation vulnerability exists in the file system permissions of... High Unreviewed

CVE-2020-13536 was published May 24, 2022

An exploitable local privilege elevation vulnerability exists in the file system permissions of... High Unreviewed

CVE-2020-13537 was published May 24, 2022

u'An Unaligned address or size can propagate to the database due to improper page permissions and... High Unreviewed

CVE-2020-3638 was published May 24, 2022

An attacker with physical access to a PAX Point Of Sale device with ProlinOS through 2.4.161... High Unreviewed

CVE-2020-28044 was published May 24, 2022

The SIP ALG implementation on NETGEAR Nighthawk R7000 1.0.9.64_10.2.64 devices allows remote... Moderate Unreviewed

CVE-2020-28041 was published May 24, 2022

An issue was discovered in REDCap 8.11.6 through 9.x before 10. The messenger's CSV feature (that... Moderate Unreviewed

CVE-2020-27358 was published May 24, 2022

A lock screen issue allowed access to contacts on a locked device. This issue was addressed with... Low Unreviewed

CVE-2019-8777 was published May 24, 2022

Verifone MX900 series Pinpad Payment Terminals with OS 30251000 have Insecure Permissions, with... Moderate Unreviewed

CVE-2019-14718 was published May 24, 2022

An issue was discovered in Ghisler Total Commander 9.51. Due to insufficient access restrictions... High Unreviewed

CVE-2020-17381 was published May 24, 2022

In setNotification of SapServer.java, there is a possible permission bypass due to a... Moderate Unreviewed

CVE-2020-0410 was published May 24, 2022

In setProcessMemoryTrimLevel of ActivityManagerService.java, there is a missing permission check.... Low Unreviewed

CVE-2020-0412 was published May 24, 2022

In AudioFlinger::RecordThread::threadLoop of audioflinger/Threads.cpp, there is a possible non... Moderate Unreviewed

CVE-2020-0414 was published May 24, 2022

In various locations in SystemUI, there is a possible permission bypass due to an unsafe... Moderate Unreviewed

CVE-2020-0415 was published May 24, 2022

Previous 1…36…49 Next

Previous 1 2 … 34 35 36 37 38 … 48 49 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,201 advisories