Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,306 advisories

Loading
Aruba Intelligent Edge Switch Series 2540, 2530, 2930F, 2930M, 2920, 5400R, and 3810M with... High Unreviewed
CVE-2019-5321 was published May 24, 2022
DBHcms v1.2.0 has an unauthorized operation vulnerability because there's no access control at... Moderate Unreviewed
CVE-2020-19888 was published May 24, 2022
Philips SureSigns VS4, A.07.107 and prior. The software does not restrict or incorrectly... Low Unreviewed
CVE-2020-16241 was published May 24, 2022
Zulip Server before 2.1.5 has Incorrect Access Control because... Moderate Unreviewed
CVE-2020-14215 was published May 24, 2022
The SSH service on ALEOS before 4.12.0, 4.9.5, 4.4.9 allows traffic proxying. Moderate Unreviewed
CVE-2019-11862 was published May 24, 2022
Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and... High Unreviewed
CVE-2020-9712 was published May 24, 2022
Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and... High Unreviewed
CVE-2020-9696 was published May 24, 2022
A vulnerability exsists in IBM Planning Analytics 2.0 whereby avatars in Planning Analytics... Moderate Unreviewed
CVE-2020-4648 was published May 24, 2022
Huawei 5G Mobile WiFi E6878-370 with versions of 10.0.3.1(H563SP1C00),10.0.3.1(H563SP21C233) have... Moderate Unreviewed
CVE-2020-9241 was published May 24, 2022
A vulnerability in the contacts feature of Cisco Webex Meetings could allow an authenticated,... Moderate Unreviewed
CVE-2020-3472 was published May 24, 2022
Improper Authorization vulnerability in McAfee Data Loss Prevention (DLP) ePO extension prior to... Moderate Unreviewed
CVE-2020-7300 was published May 24, 2022
Sonatype Nexus Repository Manager OSS/Pro before 3.26.0 has Incorrect Access Control. High Unreviewed
CVE-2020-15868 was published May 24, 2022
Telegram Desktop through 2.1.13 allows a spoofed file type to bypass the Dangerous File Type... Moderate Unreviewed
CVE-2020-17448 was published May 24, 2022
HUAWEI P30 versions Versions earlier than 10.1.0.160(C00E160R2P11);HUAWEI P30 Pro versions... Moderate Unreviewed
CVE-2020-9245 was published May 24, 2022
A security misconfiguration exists in Combodo iTop, which can expose sensitive information. Moderate Unreviewed
CVE-2020-12780 was published May 24, 2022
In JetBrains TeamCity before 2020.1, users are able to assign more permissions than they have. Moderate Unreviewed
CVE-2020-15826 was published May 24, 2022
Huawei FusionComput 8.0.0 have an improper authorization vulnerability. A module does not verify... Moderate Unreviewed
CVE-2020-9248 was published May 24, 2022
Incorrect security UI in basic auth in Google Chrome on iOS prior to 84.0.4147.89 allowed a... Moderate Unreviewed
CVE-2020-6528 was published May 24, 2022
OMERO.server before 5.6.1 allows attackers to bypass the security filters and access hidden... High Unreviewed
CVE-2019-16244 was published May 24, 2022
In Python 3.8.4, sys.path restrictions specified in a python38._pth file are ignored, allowing... High Unreviewed
CVE-2020-15801 was published May 24, 2022
An issue was discovered in drivers/acpi/acpi_configfs.c in the Linux kernel before 5.7.7.... High Unreviewed
CVE-2020-15780 was published May 24, 2022
TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with... Moderate Unreviewed
CVE-2020-5598 was published May 24, 2022
The /rest/project-templates/1.0/createshared resource in Atlassian Jira Server and Data Center... Moderate Unreviewed
CVE-2020-4029 was published May 24, 2022
The UniversalAvatarResource.getAvatars resource in Jira Server and Data Center before version 8.9... Moderate Unreviewed
CVE-2020-14165 was published May 24, 2022
IBM Security Identity Manager Virtual Appliance 7.0.2 does not set the secure attribute on... Moderate Unreviewed
CVE-2019-4704 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database