Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

547 advisories

Loading
** UNSUPPORTED WHEN ASSIGNED ** CA eHealth Performance Manager through 6.3.2.12 is affected by... High Unreviewed
CVE-2021-28246 was published May 24, 2022
Adobe Creative Cloud Desktop Application version 5.3 (and earlier) is affected by an Unquoted... Moderate Unreviewed
CVE-2021-21078 was published May 24, 2022
In Edge Client version 7.2.x before 7.2.1.1, 7.1.9.x before 7.1.9.8, and 7.1.x-7.1.8.x before 7.1... High Unreviewed
CVE-2021-22980 was published May 24, 2022
Adobe Dreamweaver versions 21.0 (and earlier) and 20.2 (and earlier) is affected by an untrusted... Moderate Unreviewed
CVE-2021-21055 was published May 24, 2022
Acronis True Image for Windows prior to 2021 Update 3 allowed local privilege escalation due to a... High Unreviewed
CVE-2020-35145 was published May 24, 2022
Untrusted search path vulnerability in the installer of SKYSEA Client View Ver.1.020.05b to Ver... High Unreviewed
CVE-2021-20616 was published May 24, 2022
The SECOMN service in Sound Research DCHU model software component modules (APO) through 2.0.9.17... High Unreviewed
CVE-2020-35686 was published May 24, 2022
An issue was discovered in Xen through 4.14.x. A guest may access xenstore paths via absolute... Moderate Unreviewed
CVE-2020-29482 was published May 24, 2022
Untrusted search path vulnerability in the installers of multiple SEIKO EPSON products allows an... High Unreviewed
CVE-2020-5674 was published May 24, 2022
IBM DB2 Accessories Suite for Linux, UNIX, and Windows, DB2 for Linux, UNIX and Windows (includes... High Unreviewed
CVE-2020-4739 was published May 24, 2022
Trend Micro Security 2020 (Consumer) contains a vulnerability in the installer package that could... High Unreviewed
CVE-2020-27695 was published May 24, 2022
Trend Micro Security 2020 (Consumer) contains a vulnerability in the installer package that could... High Unreviewed
CVE-2020-27697 was published May 24, 2022
Check Point Endpoint Security Client for Windows, with Anti-Bot or Threat Emulation blades... Moderate Unreviewed
CVE-2020-6014 was published May 24, 2022
SonicWall Global VPN client version 4.10.4.0314 and earlier allows unprivileged windows user to... High Unreviewed
CVE-2020-5144 was published May 24, 2022
HUAWEI P30 Pro versions earlier than 10.1.0.160(C00E160R2P8) have a path traversal vulnerability.... Moderate Unreviewed
CVE-2020-9106 was published May 24, 2022
monero-wallet-gui in Monero GUI 0.17.0.1 includes the . directory in an embedded RPATH (with a... High Unreviewed
CVE-2020-26947 was published May 24, 2022
InstallBuilder for Qt Windows (versions prior to 20.7.0) installers look for plugins at a... High Unreviewed
CVE-2020-3979 was published May 24, 2022
The Windows installer for PostgreSQL 9.5 - 12 invokes system-provided executables that do not... High Unreviewed
CVE-2020-10733 was published May 24, 2022
Uncontrolled search path in the QT Library before 5.14.0, 5.12.7 and 5.9.10 may allow an... High Unreviewed
CVE-2020-0570 was published May 24, 2022
DLL Injection Vulnerability in McAfee Agent (MA) for Windows prior to 5.6.6 allows local users to... Moderate Unreviewed
CVE-2020-7315 was published May 24, 2022
Guangzhou NetEase Mail Master 4.14.1.1004 on Windows has a DLL hijacking vulnerability. Attackers... Moderate Unreviewed
CVE-2020-24161 was published May 24, 2022
Shenzhen Tencent TIM Windows client 3.0.0.21315 has a DLL hijacking vulnerability, which can be... Moderate Unreviewed
CVE-2020-24160 was published May 24, 2022
NetEase Youdao Dictionary has a DLL hijacking vulnerability, which can be exploited by attackers... Moderate Unreviewed
CVE-2020-24159 was published May 24, 2022
360 Speed Browser 12.0.1247.0 has a DLL hijacking vulnerability, which can be exploited by... Moderate Unreviewed
CVE-2020-24158 was published May 24, 2022
In OSIsoft PI System multiple products and versions, a local attacker can modify a search path... High Unreviewed
CVE-2020-10610 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database