Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,359
Erlang
33
GitHub Actions
22
Go
2,126
Maven
5,000+
npm
3,787
NuGet
683
pip
3,467
Pub
12
RubyGems
894
Rust
892
Swift
38
Unreviewed advisories
All unreviewed
5,000+

611 advisories

Loading
Acronis True Image prior to 2021 Update 5 for Windows allowed local privilege escalation due to... High Unreviewed
CVE-2021-32577 was published May 24, 2022
Dell PowerScale OneFS 9.1.0.x contains an improper privilege management vulnerability. It may... High Unreviewed
CVE-2021-21567 was published May 24, 2022
A vulnerability in victor Web Client versions up to and including v5.4.1 could allow a remote... High Unreviewed
CVE-2020-9048 was published May 24, 2022
In SapphireIMS 4097_1, a guest user can create a local administrator account on any system that... High Unreviewed
CVE-2017-16630 was published May 24, 2022
The Canon TR150 print driver through 3.71.2.10 is vulnerable to a privilege escalation issue.... High Unreviewed
CVE-2021-38085 was published May 24, 2022
Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an incorrect permission assignment... High Unreviewed
CVE-2021-36281 was published May 24, 2022
Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an incorrect permission assignment for... High Unreviewed
CVE-2021-36279 was published May 24, 2022
A configuration issue in Indexhibit 2.1.5 allows authenticated attackers to modify .php files,... High Unreviewed
CVE-2020-18121 was published May 24, 2022
A flaw was found in tripleo-ansible version as shipped in Red Hat Openstack 16.1. The Ansible log... High Unreviewed
CVE-2021-31918 was published May 24, 2022
Certain Canon devices manufactured in 2012 through 2020 (such as imageRUNNER ADVANCE iR-ADV C5250... High Unreviewed
CVE-2021-38154 was published May 24, 2022
Improper Access Control Tampering Vulnerability using ImportAlert function which can lead to a... High Unreviewed
CVE-2021-35221 was published May 24, 2022
RabbitMQ installers on Windows prior to version 3.8.16 do not harden plugin directory permissions... High Unreviewed
CVE-2021-22117 was published May 24, 2022
The access controls on the Mobility read-write API improperly validate user access permissions;... High Unreviewed
CVE-2021-40067 was published May 24, 2022
Elastic Enterprise Search App Search versions before 7.14.0 was vulnerable to an issue where API... High Unreviewed
CVE-2021-22148 was published May 24, 2022
Elastic Enterprise Search App Search versions before 7.14.0 are vulnerable to an issue where API... High Unreviewed
CVE-2021-22149 was published May 24, 2022
Visual Studio Elevation of Privilege Vulnerability High Unreviewed
CVE-2021-26434 was published May 24, 2022
adminlte is vulnerable to Sensitive Cookie Without 'HttpOnly' Flag High Unreviewed
CVE-2021-3706 was published May 24, 2022
The MacOS version of Multipass, version 1.7.0, fixed in 1.7.2, accidentally installed the... High Unreviewed
CVE-2021-3747 was published May 24, 2022
A local unprivileged attacker may escalate to administrator privileges in Honeywell SoftMaster... High Unreviewed
CVE-2022-2332 was published Sep 17, 2022
OpenClinic GA 5.194.18 is affected by Insecure Permissions. By default the Authenticated Users... High Unreviewed
CVE-2021-37364 was published May 24, 2022
An issue was discovered in Nagios XI 5.8.5. Insecure file permissions on the nagios_unbundler.py... High Unreviewed
CVE-2021-40343 was published May 24, 2022
Insecure inherited permissions in the installer for the Intel(R) NUC M15 Laptop Kit Serial IO... High Unreviewed
CVE-2021-33093 was published May 24, 2022
A vulnerability has been identified in SENTRON powermanager V3 (All versions). The affected... High Unreviewed
CVE-2021-37207 was published May 24, 2022
Insecure inherited permissions in the installer for the Intel(R) NUC M15 Laptop Kit Keyboard LED... High Unreviewed
CVE-2021-33094 was published May 24, 2022
Insecure inherited permissions in the installer for the Intel(R) NUC M15 Laptop Kit audio driver... High Unreviewed
CVE-2021-33091 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database