Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

987 advisories

Loading
Citrix ADC and Citrix/NetScaler Gateway before 13.0-82.41, 12.1-62.23, 11.1-65.20 and Citrix ADC... Moderate Unreviewed
CVE-2020-8300 was published May 24, 2022
Protection mechanism failure in some Intel(R) RealSense(TM) IDs may allow an unauthenticated user... Moderate Unreviewed
CVE-2020-24515 was published May 24, 2022
IBM Spectrum Scale 5.1.0.1 could allow a local with access to the GUI pod container to obtain... Moderate Unreviewed
CVE-2021-29708 was published May 24, 2022
Windows Graphics Component Elevation of Privilege Vulnerability This CVE ID is unique from CVE... Moderate Unreviewed
CVE-2021-31188 was published May 24, 2022
Chamilo LMS 1.11.10 does not properly manage privileges which could allow a user with Sessions... Moderate Unreviewed
CVE-2020-23128 was published May 24, 2022
Exim 4 before 4.94.2 has Execution with Unnecessary Privileges. By leveraging a delete_pid_file... Moderate Unreviewed
CVE-2021-27216 was published May 24, 2022
NXP LPC55S6x microcontrollers (0A and 1B), i.MX RT500 (silicon rev B1 and B2), i.MX RT600 ... Moderate Unreviewed
CVE-2021-31532 was published May 24, 2022
A vulnerability in an access control mechanism of Cisco Firepower Management Center (FMC)... Moderate Unreviewed
CVE-2021-1477 was published May 24, 2022
IBM Spectrum Scale 5.0.4.1 through 5.1.0.3 could allow a local privileged user to overwrite files... Moderate Unreviewed
CVE-2020-4981 was published May 24, 2022
Automox Agent prior to version 31 uses an insufficiently protected S3 bucket endpoint for storing... Moderate Unreviewed
CVE-2021-26909 was published May 24, 2022
A sensitive information disclosure vulnerability in the mosquitto message broker of Juniper... Moderate Unreviewed
CVE-2021-0256 was published May 24, 2022
A local privilege escalation vulnerability in ethtraceroute of Juniper Networks Junos OS may... Moderate Unreviewed
CVE-2021-0255 was published May 24, 2022
A flaw was found in cifs-utils in versions before 6.13. A user when mounting a krb5 CIFS file... Moderate Unreviewed
CVE-2021-20208 was published May 24, 2022
In LK, there is a possible escalation of privilege due to an insecure default value. This could... Moderate Unreviewed
CVE-2021-0468 was published May 24, 2022
An improper access control in ActivityManagerService prior to SMR APR-2021 Release 1 allows... Moderate Unreviewed
CVE-2021-25363 was published May 24, 2022
A pendingIntent hijacking vulnerability in Create Movie prior to SMR APR-2021 Release 1 in... Moderate Unreviewed
CVE-2021-25357 was published May 24, 2022
An improper permission management in CertInstaller prior to SMR APR-2021 Release 1 allows... Moderate Unreviewed
CVE-2021-25362 was published May 24, 2022
A vulnerability in Cisco Webex Meetings for Android could allow an authenticated, remote attacker... Moderate Unreviewed
CVE-2021-1467 was published May 24, 2022
By default, the WP Page Builder WordPress plugin before 1.2.4 allows subscriber-level users to... Moderate Unreviewed
CVE-2021-24207 was published May 24, 2022
Orbit Fox by ThemeIsle has a feature to add a registration form to both the Elementor and Beaver... Moderate Unreviewed
CVE-2021-24158 was published May 24, 2022
A vulnerability in CLI management in Cisco IOS XE SD-WAN Software could allow an authenticated,... Moderate Unreviewed
CVE-2021-1281 was published May 24, 2022
In the NXP NFC firmware, there is a possible insecure firmware update due to a logic error. This... Moderate Unreviewed
CVE-2021-0462 was published May 24, 2022
A missing user check in Nextcloud prior to 20.0.6 inadvertently populates a user's own... Moderate Unreviewed
CVE-2021-22877 was published May 24, 2022
An issue was discovered in MB connect line mymbCONNECT24 and mbCONNECT24 software in all versions... Moderate Unreviewed
CVE-2020-12527 was published May 24, 2022
Microsoft Azure Kubernetes Service Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2021-24109 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database