Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+

2,781 advisories

Loading
Incorrect access control in zam64.sys, zam32.sys in MalwareFox AntiMalware 2.74.0.150 where IOCTL... High Unreviewed
CVE-2021-31727 was published May 24, 2022
Improper access control vulnerability in Cameralyzer prior to versions 3.2.1041 in 3.2.x, 3.3... Moderate Unreviewed
CVE-2021-25431 was published May 24, 2022
Archer Platform 6.3 before 6.11 (6.11.0.0) contains an Improper Access Control Vulnerability... High Unreviewed
CVE-2022-30584 was published May 27, 2022
TrueStack Direct Connect 1.4.7 has Incorrect Access Control. Critical Unreviewed
CVE-2022-23775 was published May 26, 2022
An issue has been discovered in GitLab affecting all versions starting from 13.4. Improper access... Moderate Unreviewed
CVE-2021-22180 was published May 24, 2022
A ZTE product is impacted by improper access control vulnerability. The attacker could exploit... Critical Unreviewed
CVE-2021-21730 was published May 24, 2022
An issue was discovered in Cleo LexiCom 5.5.0.0. The requirement for the sender of an AS2 message... Moderate Unreviewed
CVE-2021-33577 was published May 24, 2022
In the Settings app, there is a possible way to disable an always-on VPN due to a missing... High Unreviewed
CVE-2021-0505 was published May 24, 2022
Insufficient policy enforcement in image handling in iOS in Google Chrome on iOS prior to 92.0... Moderate Unreviewed
CVE-2021-30583 was published May 24, 2022
Improper Access Control vulnerability in web service of Secomea SiteManager allows local attacker... Low Unreviewed
CVE-2021-32002 was published May 24, 2022
IBM Cloud Pak for Security (CP4S) 1.5.0.0, 1.5.1.0, 1.6.0.0, 1.6.1.0, 1.7.0.0, and 1.7.1.0 could... Moderate Unreviewed
CVE-2021-20541 was published May 24, 2022
There is an arbitrary password modification vulnerability in a D-LINK DSL-2888A router product.... Critical Unreviewed
CVE-2021-33346 was published May 24, 2022
Incorrect Access Control in Tranquil WAPT Enterprise - before 1.8.2.7373 and before 2.0.0.9450... High Unreviewed
CVE-2021-38608 was published May 24, 2022
PwnDoc through 2021-04-22 has incorrect JSON Webtoken handling, leading to incorrect access... High Unreviewed
CVE-2021-31590 was published May 24, 2022
Bonita Web 2021.2 is affected by a authentication/authorization bypass vulnerability due to an... Critical Unreviewed
CVE-2022-25237 was published Jun 3, 2022
A vulnerability in Cisco Connected Mobile Experiences (CMX) API authorizations could allow an... Moderate Unreviewed
CVE-2021-1143 was published May 24, 2022
This issue was addressed with improved checks. This issue is fixed in Security Update 2022-003... Moderate Unreviewed
CVE-2022-22616 was published May 27, 2022
In FreeBSD 12.2-STABLE before r369346, 11.4-STABLE before r369345, 12.2-RELEASE before p4 and 11... Moderate Unreviewed
CVE-2020-25580 was published May 24, 2022
IBM UrbanCode Deploy (UCD) 6.2.7.9, 7.0.5.4, and 7.1.1.1 could allow an authenticated user to... Moderate Unreviewed
CVE-2020-4848 was published May 24, 2022
Incorrect authorization in GitLab EE affecting all versions from 12.0 before 14.9.5, all versions... Moderate Unreviewed
CVE-2022-1935 was published Jun 7, 2022
The unofficial GLSL Linting extension before 1.4.0 for Visual Studio Code allows remote code... Critical Unreviewed
CVE-2021-30503 was published May 24, 2022
WinWaste.NET version 1.0.6183.16475 has incorrect permissions, allowing a local unprivileged user... High Unreviewed
CVE-2021-34110 was published May 24, 2022
Improper authorization vulnerability in Tizen factory reset policy prior to Firmware update JUL... Moderate Unreviewed
CVE-2021-25433 was published May 24, 2022
Improper access control vulnerability in Gurunavi App for Android ver.10.0.10 and earlier and for... High Unreviewed
CVE-2021-20693 was published May 24, 2022
Improper access control vulnerability in DAP-1880AC firmware version 1.21 and earlier allows a... High Unreviewed
CVE-2021-20694 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database