Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,874
Erlang
37
GitHub Actions
36
Go
2,520
Maven
5,000+
npm
4,160
NuGet
741
pip
3,961
Pub
12
RubyGems
946
Rust
1,028
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,336 advisories

Loading
In sendConfiguredNetworkChangedBroadcast of WifiConfigManager.java, there is a possible leak of... Low Unreviewed
CVE-2020-0459 was published May 24, 2022
Dell Wyse ThinOS 8.6 and prior versions contain an insecure default configuration vulnerability.... High Unreviewed
CVE-2020-29491 was published May 24, 2022
A local privilege elevation vulnerability exists in the file system permissions of LogicalDoc 8.5... High Unreviewed
CVE-2020-13542 was published May 24, 2022
Audacity through 2.3.3 saves temporary files to /var/tmp/audacity-$USER by default. After... Low Unreviewed
CVE-2020-11867 was published May 24, 2022
In setProcessMemoryTrimLevel of ActivityManagerService.java, there is a missing permission check.... Low Unreviewed
CVE-2020-0412 was published May 24, 2022
In AudioFlinger::RecordThread::threadLoop of audioflinger/Threads.cpp, there is a possible non... Moderate Unreviewed
CVE-2020-0414 was published May 24, 2022
In various locations in SystemUI, there is a possible permission bypass due to an unsafe... Moderate Unreviewed
CVE-2020-0415 was published May 24, 2022
Kia Motors Head Unit with Software version: SOP.003.30.18.0703, SOP.005.7.181019, and SOP.007.1... High Unreviewed
CVE-2020-8539 was published May 24, 2022
Insufficient permission checks in scheduled pipeline API in GitLab CE/EE 13.0+ allows an attacker... Moderate Unreviewed
CVE-2020-13351 was published May 24, 2022
In listen() and related functions of TelephonyRegistry.java, there is a possible permissions... Moderate Unreviewed
CVE-2020-0468 was published May 24, 2022
Incorrect default permissions in the Intel(R) DSA before version 20.8.30.6 may allow an... Moderate Unreviewed
CVE-2020-24460 was published May 24, 2022
Incorrect default permissions in the Intel(R) Board ID Tool version v.1.01 may allow an... High Unreviewed
CVE-2020-24456 was published May 24, 2022
Improper permissions in some Intel(R) High Definition Audio drivers before version 9.21.00.4561... High Unreviewed
CVE-2020-12307 was published May 24, 2022
SAP Commerce Cloud, versions- 1808,1811,1905,2005, allows an attacker to bypass existing... Moderate Unreviewed
CVE-2020-26809 was published May 24, 2022
In getPhoneAccountsForPackage of TelecomServiceImpl.java, there is a possible way to access a... Moderate Unreviewed
CVE-2020-0448 was published May 24, 2022
Insecure permissions in Nakivo Backup & Replication Director version 9.4.0.r43656 on Linux allow... High Unreviewed
CVE-2020-15850 was published May 24, 2022
Improper permissions in the installer for the Intel(R) Battery Life Diagnostic Tool before... High Unreviewed
CVE-2020-12346 was published May 24, 2022
In UsageStatsManager, there is a possible access to protected data due to a missing permission... Moderate Unreviewed
CVE-2020-0317 was published May 24, 2022
In the wallpaper manager, there is a possible permission bypass due to an unsafe PendingIntent.... Moderate Unreviewed
CVE-2020-0294 was published May 24, 2022
In Settings, there is a possible permission bypass due to an unsafe PendingIntent. This could... Moderate Unreviewed
CVE-2020-0310 was published May 24, 2022
In InputManagerService, there is a possible permission bypass due to an unsafe PendingIntent.... Moderate Unreviewed
CVE-2020-0311 was published May 24, 2022
u'An Unaligned address or size can propagate to the database due to improper page permissions and... High Unreviewed
CVE-2020-3638 was published May 24, 2022
In Telephony, there is a possible permission bypass due to a missing permission check. This could... Moderate Unreviewed
CVE-2020-0285 was published May 24, 2022
Verifone MX900 series Pinpad Payment Terminals with OS 30251000 have Insecure Permissions, with... Moderate Unreviewed
CVE-2019-14718 was published May 24, 2022
SAP ERP Client for E-Bilanz, version - 1.0, installation sets Incorrect default filesystem... Low Unreviewed
CVE-2020-26807 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database