Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,414 advisories

Loading
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability. This CVE ID is unique from... High Unreviewed
CVE-2022-26895 was published Apr 6, 2022
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability. This CVE ID is unique from... High Unreviewed
CVE-2022-26900 was published Apr 6, 2022
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability. This CVE ID is unique from... High Unreviewed
CVE-2022-26909 was published Apr 6, 2022
Improper handling of permissions of a shared memory region can lead to memory corruption in... High Unreviewed
CVE-2021-1942 was published Apr 2, 2022
In PermissionController, there is a possible way to delete some local files due to an unsafe... High Unreviewed
CVE-2021-39746 was published Mar 31, 2022
In Bubbles, there is a possible way to interfere with Bubbles due to a permissions bypass. This... High Unreviewed
CVE-2021-39752 was published Mar 31, 2022
In Bluetooth, there is a possible way to access the a2dp audio control switch due to a missing... High Unreviewed
CVE-2021-39772 was published Mar 31, 2022
In Telephony, there is a possible unauthorized modification of the PLMN SIM file due to a missing... High Unreviewed
CVE-2021-39782 was published Mar 31, 2022
In CellBroadcastReceiver, there is a possible path to enable specific cellular features due to a... High Unreviewed
CVE-2021-39784 was published Mar 31, 2022
In SmsController, there is a possible information disclosure due to a permissions bypass. This... High Unreviewed
CVE-2021-39781 was published Mar 31, 2022
In rcsservice, there is a possible way to modify TTY mode due to a missing permission check. This... High Unreviewed
CVE-2021-39783 was published Mar 31, 2022
Vertical Privilege Escalation in KONGA 0.14.9 allows attackers to higher privilege users to full... High Unreviewed
CVE-2021-44103 was published Mar 29, 2022
Razer Synapse before 3.7.0228.022817 allows privilege escalation because it relies on ... High Unreviewed
CVE-2021-44226 was published Mar 25, 2022
The IBM Spectrum Protect 8.1.14.000 server could allow a remote attacker to bypass security... High Unreviewed
CVE-2022-22394 was published Mar 22, 2022
A logic issue was addressed with improved validation. This issue is fixed in tvOS 15.3, iOS 15.3... High Unreviewed
CVE-2022-22578 was published Mar 19, 2022
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur... High Unreviewed
CVE-2022-22617 was published Mar 19, 2022
A logic issue was addressed with improved state management. This issue is fixed in iOS 15.4 and... High Unreviewed
CVE-2022-22639 was published Mar 19, 2022
A logic issue was addressed with improved validation. This issue is fixed in macOS Monterey 12.3.... High Unreviewed
CVE-2022-22665 was published Mar 19, 2022
A Improper Privilege Management vulnerability in the sudoers configuration in cscreen of openSUSE... High Unreviewed
CVE-2022-21946 was published Mar 17, 2022
In NotificationStackScrollLayout of NotificationStackScrollLayout.java, there is a possible way... High Unreviewed
CVE-2021-0957 was published Mar 17, 2022
In several functions of binder.c, there is a possible way to represent the wrong domain to... High Unreviewed
CVE-2021-39686 was published Mar 17, 2022
In multiple functions of odsign_main.cpp, there is a possible way to persist system attack due to... High Unreviewed
CVE-2021-39689 was published Mar 17, 2022
In onUidStateChanged of AppOpsService.java, there is a possible way to access location without a... High Unreviewed
CVE-2021-39693 was published Mar 17, 2022
'Long-term Data Archive Package' service implemented in the following Yokogawa Electric products... High Unreviewed
CVE-2022-22141 was published Mar 12, 2022
An elevation of privilege vulnerability in the QNX Neutrino Kernel of affected versions of QNX... High Unreviewed
CVE-2021-32025 was published Mar 11, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database