Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,304 advisories

Loading
Improper access control in the CI/CD cache mechanism in GitLab CE/EE affecting all versions... High Unreviewed
CVE-2022-1423 was published May 20, 2022
A read-only authentication bypass vulnerability was reported in the Third Quarter 2021 release of... Moderate Unreviewed
CVE-2021-3956 was published May 19, 2022
A vulnerability, which was classified as critical, was found in WoWonder. Affected is the file ... Moderate Unreviewed
CVE-2022-1753 was published May 18, 2022
This broken access control vulnerability pertains specifically to a domain admin who can access... Moderate Unreviewed
CVE-2021-35249 was published May 18, 2022
The WDB target agent debug service in Wind River VxWorks 6.x, 5.x, and earlier, as used on the... High Unreviewed
CVE-2010-2965 was published May 17, 2022
The ActiveBar1 ActiveX control in the Data Dynamics ActiveBar ActiveX controls, as distributed in... High Unreviewed
CVE-2011-1207 was published May 17, 2022
The netsnmp_udp_fmtaddr function (snmplib/snmpUDPDomain.c) in net-snmp 5.0.9 through 5.4.2.1,... Moderate Unreviewed
CVE-2008-6123 was published May 17, 2022
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs).... Moderate Unreviewed
CVE-2017-10379 was published May 14, 2022
vmware-mount in VMware Workstation 7.x before 7.1.2 build 301548 on Linux, VMware Player 3.1.x... High Unreviewed
CVE-2010-4296 was published May 14, 2022
The Scanner File Utility (aka listener) in Kyocera Mita (KM) 3.3.0.1 allows remote attackers to... High Unreviewed
CVE-2008-7109 was published May 14, 2022
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X... Moderate Unreviewed
CVE-2016-4178 was published May 14, 2022
Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, does... Moderate Unreviewed
CVE-2013-0889 was published May 14, 2022
EOSIO batdappboomx v327c04cf has an Access-control vulnerability in the `transfer` function of... High Unreviewed
CVE-2022-27134 was published May 14, 2022
A vulnerability in Mitel 6900 Series IP (MiNet) phones excluding 6970, versions 1.8 (1.8.0.12)... High Unreviewed
CVE-2022-29854 was published May 14, 2022
The Property module has a vulnerability in permission control.This vulnerability can be exploited... Moderate Unreviewed
CVE-2021-46785 was published May 14, 2022
There is a Factory Reset Protection (FRP) bypass vulnerability on several smartphones. The system... Moderate Unreviewed
CVE-2018-7988 was published May 13, 2022
Huawei smartphones with software Victoria-AL00 8.0.0.336a(C00) have an information leakage... Low Unreviewed
CVE-2018-7957 was published May 13, 2022
Huawei Watch 2 with versions and earlier than OWDD.180707.001.E1 have an improper authorization... Moderate Unreviewed
CVE-2018-7926 was published May 13, 2022
The radio module of some Huawei smartphones Emily-AL00A The versions before 8.1.0.171(C00) have a... Moderate Unreviewed
CVE-2018-7925 was published May 13, 2022
Huawei Mate RS smartphones with the versions before NEO-AL00D 8.1.0.167(C786) have a lock-screen... Moderate Unreviewed
CVE-2018-7929 was published May 13, 2022
An improper authorization vulnerability exists In Schneider Electric's 66074 MGE Network... Critical Unreviewed
CVE-2018-7245 was published May 13, 2022
Aruba ClearPass Policy Manager guest authorization failure. Certain administrative operations in... High Unreviewed
CVE-2018-7079 was published May 13, 2022
Ivanti Endpoint Security (formerly HEAT Endpoint Management and Security Suite) 8.5 Update 1 and... High Unreviewed
CVE-2018-6316 was published May 13, 2022
NetApp 7-Mode Transition Tool allows users with valid credentials to access functions and... Moderate Unreviewed
CVE-2018-5489 was published May 13, 2022
Necessary authorization checks for an authenticated user, resulting in escalation of privileges,... High Unreviewed
CVE-2018-2494 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database