Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,874
Erlang
37
GitHub Actions
36
Go
2,520
Maven
5,000+
npm
4,160
NuGet
741
pip
3,961
Pub
12
RubyGems
946
Rust
1,028
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,336 advisories

Loading
Incorrect default permissions in Windows(R) installer in Intel(R) AMT SDK versions before 14.0.0... High Unreviewed
CVE-2020-12354 was published May 24, 2022
In updateNotification of BeamTransferManager.java, there is a possible permission bypass due to... Moderate Unreviewed
CVE-2020-0453 was published May 24, 2022
Incorrect default permissions in the Intel(R) RealSense(TM) D400 Series Dynamic Calibration Tool... High Unreviewed
CVE-2020-12306 was published May 24, 2022
An issue was discovered in REDCap 8.11.6 through 9.x before 10. The messenger's CSV feature (that... Moderate Unreviewed
CVE-2020-27358 was published May 24, 2022
An attacker with physical access to a PAX Point Of Sale device with ProlinOS through 2.4.161... High Unreviewed
CVE-2020-28044 was published May 24, 2022
A missing CAP_NET_RAW check in NFC socket creation in net/nfc/rawsock.c in the Linux kernel... Moderate Unreviewed
CVE-2020-26088 was published May 24, 2022
In NetworkStatsService, there is a possible access to protected data due to a missing permission... Moderate Unreviewed
CVE-2020-0343 was published May 24, 2022
In Settings, there is a possible permission bypass due to an unsafe PendingIntent. This could... Moderate Unreviewed
CVE-2020-0304 was published May 24, 2022
In Window Manager, there is a possible permission bypass due to an unsafe PendingIntent. This... Moderate Unreviewed
CVE-2020-0308 was published May 24, 2022
In Telecom, there is a possible permission bypass due to an unsafe PendingIntent. This could lead... Moderate Unreviewed
CVE-2020-0295 was published May 24, 2022
Insecure inherited permissions in some Intel(R) PROSet/Wireless WiFi products on Windows* 7 and 8... Moderate Unreviewed
CVE-2020-0559 was published May 24, 2022
In setNotification of SapServer.java, there is a possible permission bypass due to a... Moderate Unreviewed
CVE-2020-0410 was published May 24, 2022
In Zen Mode, there is a possible permission bypass due to an unsafe PendingIntent. This could... Moderate Unreviewed
CVE-2020-0315 was published May 24, 2022
In Telephony, there is a missing permission check. This could lead to local information... Moderate Unreviewed
CVE-2020-0316 was published May 24, 2022
In Telephony, there is a possible permission bypass due to a missing permission check. This could... Moderate Unreviewed
CVE-2020-0284 was published May 24, 2022
In ADB server and USB server, there is a possible permission bypass due to an unsafe... Moderate Unreviewed
CVE-2020-0296 was published May 24, 2022
In Settings, there is a possible permission bypass due to an unsafe PendingIntent. This could... Moderate Unreviewed
CVE-2020-0302 was published May 24, 2022
In Settings, there is a possible permission bypass due to an unsafe PendingIntent. This could... Moderate Unreviewed
CVE-2020-0307 was published May 24, 2022
In Battery Saver, there is a possible permission bypass due to an unsafe PendingIntent. This... Moderate Unreviewed
CVE-2020-0312 was published May 24, 2022
In devicepolicy service, there is a possible permission bypass due to an unsafe PendingIntent.... Moderate Unreviewed
CVE-2020-0297 was published May 24, 2022
In Telephony, there is a possible permission bypass due to a missing permission check. This could... Moderate Unreviewed
CVE-2020-0276 was published May 24, 2022
In SyncManager, there is a possible permission bypass due to an unsafe PendingIntent. This could... Moderate Unreviewed
CVE-2020-0426 was published May 24, 2022
In Java network APIs, there is possible access to sensitive network state due to a missing... Moderate Unreviewed
CVE-2020-0293 was published May 24, 2022
Insufficient policy enforcement in CSP in Google Chrome prior to 84.0.4147.89 allowed a remote... Moderate Unreviewed
CVE-2020-6527 was published May 24, 2022
A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507... Moderate Unreviewed
CVE-2020-8907 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database