GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,931
Composer 4,871
Erlang 37
GitHub Actions 36
Go 2,517
Maven 5,956
npm 4,150
NuGet 736
pip 3,952
Pub 12
RubyGems 946
Rust 1,026
Swift 39

Unreviewed advisories

All unreviewed 269,946

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,201 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Insecure inherited permissions in some Intel(R) PROSet/Wireless WiFi products on Windows* 7 and 8... Moderate Unreviewed

CVE-2020-0559 was published May 24, 2022

A Incorrect Default Permissions vulnerability in the packaging of inn in openSUSE Leap 15.2,... High Unreviewed

CVE-2020-8026 was published May 24, 2022

An insufficient permission check vulnerability exists in Pulse Connect Secure <9.1R8 that allows... Moderate Unreviewed

CVE-2020-8219 was published May 24, 2022

In OSIsoft PI System multiple products and versions, a local attacker can exploit incorrect... High Unreviewed

CVE-2020-10606 was published May 24, 2022

Insufficient policy enforcement in CSP in Google Chrome prior to 84.0.4147.89 allowed a remote... Moderate Unreviewed

CVE-2020-6527 was published May 24, 2022

An issue was discovered in the Linux kernel 5.5 through 5.7.9, as used in Xen through 4.13.x for... Moderate Unreviewed

CVE-2020-15852 was published May 24, 2022

In getUiccCardsInfo of PhoneInterfaceManager.java, there is a possible permissions bypass due to... Low Unreviewed

CVE-2020-0107 was published May 24, 2022

In onCommand of CompanionDeviceManagerService.java, there is a possible permissions bypass due to... High Unreviewed

CVE-2020-0227 was published May 24, 2022

When constructing a permission prompt for WebRTC, a URI was supplied from the content process.... Moderate Unreviewed

CVE-2020-12424 was published May 24, 2022

When "%2F" was present in a manifest URL, Firefox's AppCache behavior may have become confused... Moderate Unreviewed

CVE-2020-12415 was published May 24, 2022

In versions 13.1.0-13.1.3.3, 12.1.0-12.1.5.2, and 11.6.1-11.6.5.2, the BIG-IP system does not... Moderate Unreviewed

CVE-2020-5906 was published May 24, 2022

A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507... Moderate Unreviewed

CVE-2020-8907 was published May 24, 2022

A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507... Moderate Unreviewed

CVE-2020-8933 was published May 24, 2022

A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507... Moderate Unreviewed

CVE-2020-8903 was published May 24, 2022

I2P before 0.9.46 allows local users to gain privileges via a Trojan horse I2PSvc.exe file... High Unreviewed

CVE-2020-13431 was published May 24, 2022

In onCreate of ConfirmConnectActivity.java, there is a possible leak of Bluetooth information due... Moderate Unreviewed

CVE-2020-0215 was published May 24, 2022

In onStart of MainActivity.java, there is a possible bypass of developer settings requirements... Moderate Unreviewed

CVE-2020-0202 was published May 24, 2022

In dump of RollbackManagerServiceImpl.java, there is a possible backup metadata exposure due to a... Low Unreviewed

CVE-2020-0135 was published May 24, 2022

In setIPv6AddrGenMode of NetworkManagementService.java, there is a possible bypass of networking... Moderate Unreviewed

CVE-2020-0137 was published May 24, 2022

In updateUidProcState of AppOpsService.java, there is a possible permission bypass due to a logic... Low Unreviewed

CVE-2020-0121 was published May 24, 2022

Missing permission check on fork relation creation in GitLab CE/EE 11.3 and later through 13.0.1... Moderate Unreviewed

CVE-2020-13270 was published May 24, 2022

In checkSystemLocationAccess of LocationAccessPolicy.java, there is a possible bypass of user... Moderate Unreviewed

CVE-2020-0116 was published May 24, 2022

A permissions issue existed. This issue was addressed with improved permission validation. This... High Unreviewed

CVE-2020-9817 was published May 24, 2022

WinGate v9.4.1.5998 has insecure permissions for the installation directory, which allows local... High Unreviewed

CVE-2020-13866 was published May 24, 2022

The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the... High Unreviewed

CVE-2020-12695 was published May 24, 2022

Previous 1…38…49 Next

Previous 1 2 … 36 37 38 39 40 … 48 49 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,201 advisories