Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,874
Erlang
37
GitHub Actions
36
Go
2,520
Maven
5,000+
npm
4,160
NuGet
741
pip
3,961
Pub
12
RubyGems
946
Rust
1,028
Swift
39
Unreviewed advisories
All unreviewed
5,000+

508 advisories

Loading
In JetBrains TeamCity before 2021.1.2, permission checks in the Create Patch functionality are... Moderate Unreviewed
CVE-2021-43199 was published May 24, 2022
There is an Improper permission management vulnerability in Huawei Smartphone.Successful... Moderate Unreviewed
CVE-2021-22475 was published May 24, 2022
The Hub in CFEngine Enterprise 3.6.7 through 3.18.0 has Insecure Permissions that allow local... Moderate Unreviewed
CVE-2021-38379 was published May 24, 2022
In startListening of PluginManagerImpl.java, there is a possible way to disable arbitrary app... Moderate Unreviewed
CVE-2021-0706 was published May 24, 2022
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE)... Moderate Unreviewed
CVE-2021-40123 was published May 24, 2022
ASUSTek ZenBook Pro Due 15 UX582 laptop firmware through 203 has Insecure Permissions that allow... Moderate Unreviewed
CVE-2021-42055 was published May 24, 2022
Permissions rules were not applied while issues were moved between projects of the same group in... Moderate Unreviewed
CVE-2021-39886 was published May 24, 2022
Insecure permissions in Confluent Ansible (cp-ansible) 5.5.0, 5.5.1, 5.5.2 and 6.0.0 allows local... Moderate Unreviewed
CVE-2021-33923 was published May 24, 2022
The issue was addressed with improved permissions logic. This issue is fixed in macOS Big Sur 11... Moderate Unreviewed
CVE-2021-30750 was published May 24, 2022
Copied files may not have the expected file permissions. This issue is fixed in Security Update... Moderate Unreviewed
CVE-2021-1832 was published May 24, 2022
The issue was addressed with improved permissions logic. This issue is fixed in iOS 14.5 and... Moderate Unreviewed
CVE-2021-1831 was published May 24, 2022
Nagios XI before version 5.8.5 is vulnerable to insecure permissions and allows unauthenticated... Moderate Unreviewed
CVE-2021-37351 was published May 24, 2022
A component of the HarmonyOS has a permission bypass vulnerability. Local attackers may exploit... Moderate Unreviewed
CVE-2021-22295 was published May 24, 2022
Liferay Portal and Liferay DXP does not properly check user permission Moderate
CVE-2021-33327 was published for com.liferay.portal:release.dxp.bom (Maven) May 24, 2022
Liferay Portal and Liferay DXP Don't Check Permissions of Pages Moderate
CVE-2021-33324 was published for com.liferay.portal:release.dxp.bom (Maven) May 24, 2022
Liferay Portal and Liferay DXP Fails to Properly Check User Permissions Moderate
CVE-2021-33334 was published for com.liferay.portal:release.dxp.bom (Maven) May 24, 2022
Liferay Portal and Liferay DXP Fails to Check User Permissions for Workflow Submissions Moderate
CVE-2021-33333 was published for com.liferay.portal:release.dxp.bom (Maven) May 24, 2022
Dell EMC PowerStore versions prior to 1.0.3.0.5.xxx contain a file permission Vulnerability. A... Moderate Unreviewed
CVE-2020-29503 was published May 24, 2022
In sendNetworkConditionsBroadcast of NetworkMonitor.java, there is a possible way for a... Moderate Unreviewed
CVE-2021-0590 was published May 24, 2022
In processInboundMessage of MceStateMachine.java, there is a possible SMS disclosure due to a... Moderate Unreviewed
CVE-2021-0588 was published May 24, 2022
In isRealSnapshot of TaskThumbnailView.java, there is possible data exposure due to a missing... Moderate Unreviewed
CVE-2021-0654 was published May 24, 2022
There is an Improper Permission Management Vulnerability in Huawei Smartphone. Successful... Moderate Unreviewed
CVE-2021-22346 was published May 24, 2022
IBM Spectrum Protect Plus 10.1.0 through 10.1.8 could allow a local user to cause a denial of... Moderate Unreviewed
CVE-2021-20490 was published May 24, 2022
vFairs 3.3 is affected by Insecure Permissions. Any user logged in to a vFairs virtual conference... Moderate Unreviewed
CVE-2020-26679 was published May 24, 2022
An issue was discovered in Acronis True Image 2020 24.5.22510. anti_ransomware_service.exe keeps... Moderate Unreviewed
CVE-2020-9451 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database