GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,936
Composer 4,871
Erlang 37
GitHub Actions 36
Go 2,517
Maven 5,956
npm 4,154
NuGet 736
pip 3,953
Pub 12
RubyGems 946
Rust 1,026
Swift 39

Unreviewed advisories

All unreviewed 270,153

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,262 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

bhyve, as used in FreeBSD through 12.1 and illumos (e.g., OmniOS CE through r151034 and... High Unreviewed

CVE-2020-24718 was published May 24, 2022

Mitel MiCloud Management Portal before 6.1 SP5 could allow an attacker, by sending a crafted... Moderate Unreviewed

CVE-2020-24595 was published May 24, 2022

A vulnerability in the CLI parser of Cisco IOS Software and Cisco IOS XE Software could allow an... Moderate Unreviewed

CVE-2020-3477 was published May 24, 2022

Multiple vulnerabilities in the web management framework of Cisco IOS XE Software could allow an... High Unreviewed

CVE-2020-3474 was published May 24, 2022

A vulnerability in the persistent Telnet/Secure Shell (SSH) CLI of Cisco IOS XE Software could... High Unreviewed

CVE-2020-3404 was published May 24, 2022

An Authorization Bypass vulnerability on Micro Focus Operation Bridge Reporter, affecting version... High Unreviewed

CVE-2020-11855 was published May 24, 2022

In getNotificationBuilder of CarrierServiceStateTracker.java, there is a possible permission... Moderate Unreviewed

CVE-2020-0397 was published May 24, 2022

In showNotification of EmergencyCallbackModeService.java, there is a possible permission bypass... Moderate Unreviewed

CVE-2020-0395 was published May 24, 2022

In showLimitedSimFunctionWarningNotification of NotificationMgr.java, there is a possible... Moderate Unreviewed

CVE-2020-0399 was published May 24, 2022

In various places in Telephony, there is a possible permission bypass due to an unsafe... Moderate Unreviewed

CVE-2020-0396 was published May 24, 2022

In createSaveNotification of RecordingService.java, there is a possible permission bypass due to... Moderate Unreviewed

CVE-2020-0389 was published May 24, 2022

In PackageManager, there is a missing permission check. This could lead to local information... Moderate Unreviewed

CVE-2020-0288 was published May 24, 2022

A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. Due to... Moderate Unreviewed

CVE-2020-13303 was published May 24, 2022

A vulnerability was discovered in GitLab versions before 13.0.12, 13.1.10, 13.2.8 and 13.3.4.... Moderate Unreviewed

CVE-2020-13318 was published May 24, 2022

GitLab before version 13.3.4 was vulnerable to an OAuth authorization scope change without user... Moderate Unreviewed

CVE-2020-13300 was published May 24, 2022

The rbd block device driver in drivers/block/rbd.c in the Linux kernel through 5.8.9 used... Moderate Unreviewed

CVE-2020-25284 was published May 24, 2022

An issue was discovered on LG mobile devices with Android OS 10 software. The lguicc software ... Critical Unreviewed

CVE-2020-25282 was published May 24, 2022

An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, 9.0, and 10 software. BT... Critical Unreviewed

CVE-2020-25283 was published May 24, 2022

An issue was discovered in Hyland OnBase through 18.0.0.32 and 19.x through 19.8.9.1000. Client... Moderate Unreviewed

CVE-2020-25251 was published May 24, 2022

SAP Marketing (Servlet), version-130,140,150, allows an authenticated attacker to invoke certain... Moderate Unreviewed

CVE-2020-6320 was published May 24, 2022

Banking services from SAP 9.0 (Bank Analyzer), version - 500, and SAP S/4HANA for financial... Moderate Unreviewed

CVE-2020-6311 was published May 24, 2022

In the COVIDSafe application through 1.0.21 for Android, unsafe use of the Bluetooth transport... Low Unreviewed

CVE-2020-14292 was published May 24, 2022

u'Improper access control can lead signed process to guess pid of other processes and access... High Unreviewed

CVE-2019-10596 was published May 24, 2022

An Incorrect Access Control vulnerability exists in /ucms/chk.php in UCMS 1.4.8. This results in... Moderate Unreviewed

CVE-2020-24981 was published May 24, 2022

Clustered Data ONTAP versions prior to 9.3P19, 9.5P14, 9.6P9 and 9.7 are susceptible to a... Moderate Unreviewed

CVE-2020-8576 was published May 24, 2022

Previous 1…68…91 Next

Previous 1 2 … 66 67 68 69 70 … 90 91 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,262 advisories