Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,873
Erlang
37
GitHub Actions
36
Go
2,519
Maven
5,000+
npm
4,156
NuGet
736
pip
3,956
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

508 advisories

Loading
In Settings, there is a possible permission bypass due to an unsafe PendingIntent. This could... Moderate Unreviewed
CVE-2020-0302 was published May 24, 2022
In Settings, there is a possible permission bypass due to an unsafe PendingIntent. This could... Moderate Unreviewed
CVE-2020-0307 was published May 24, 2022
In Window Manager, there is a possible permission bypass due to an unsafe PendingIntent. This... Moderate Unreviewed
CVE-2020-0308 was published May 24, 2022
In InputManagerService, there is a possible permission bypass due to an unsafe PendingIntent.... Moderate Unreviewed
CVE-2020-0311 was published May 24, 2022
In the wallpaper manager, there is a possible permission bypass due to an unsafe PendingIntent.... Moderate Unreviewed
CVE-2020-0294 was published May 24, 2022
In Java network APIs, there is possible access to sensitive network state due to a missing... Moderate Unreviewed
CVE-2020-0293 was published May 24, 2022
In ADB server and USB server, there is a possible permission bypass due to an unsafe... Moderate Unreviewed
CVE-2020-0296 was published May 24, 2022
In Telecom, there is a possible permission bypass due to an unsafe PendingIntent. This could lead... Moderate Unreviewed
CVE-2020-0295 was published May 24, 2022
In devicepolicy service, there is a possible permission bypass due to an unsafe PendingIntent.... Moderate Unreviewed
CVE-2020-0297 was published May 24, 2022
In Telephony, there is a possible permission bypass due to a missing permission check. This could... Moderate Unreviewed
CVE-2020-0284 was published May 24, 2022
In Telephony, there is a possible permission bypass due to a missing permission check. This could... Moderate Unreviewed
CVE-2020-0285 was published May 24, 2022
In Telephony, there is a possible permission bypass due to a missing permission check. This could... Moderate Unreviewed
CVE-2020-0276 was published May 24, 2022
Insecure inherited permissions in some Intel(R) PROSet/Wireless WiFi products on Windows* 7 and 8... Moderate Unreviewed
CVE-2020-0559 was published May 24, 2022
An insufficient permission check vulnerability exists in Pulse Connect Secure <9.1R8 that allows... Moderate Unreviewed
CVE-2020-8219 was published May 24, 2022
Insufficient policy enforcement in CSP in Google Chrome prior to 84.0.4147.89 allowed a remote... Moderate Unreviewed
CVE-2020-6527 was published May 24, 2022
An issue was discovered in the Linux kernel 5.5 through 5.7.9, as used in Xen through 4.13.x for... Moderate Unreviewed
CVE-2020-15852 was published May 24, 2022
Silverstripe has Incorrect Default Permissions Moderate
CVE-2020-6165 was published for silverstripe/graphql (Composer) May 24, 2022
When constructing a permission prompt for WebRTC, a URI was supplied from the content process.... Moderate Unreviewed
CVE-2020-12424 was published May 24, 2022
When "%2F" was present in a manifest URL, Firefox's AppCache behavior may have become confused... Moderate Unreviewed
CVE-2020-12415 was published May 24, 2022
In versions 13.1.0-13.1.3.3, 12.1.0-12.1.5.2, and 11.6.1-11.6.5.2, the BIG-IP system does not... Moderate Unreviewed
CVE-2020-5906 was published May 24, 2022
A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507... Moderate Unreviewed
CVE-2020-8907 was published May 24, 2022
A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507... Moderate Unreviewed
CVE-2020-8933 was published May 24, 2022
A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507... Moderate Unreviewed
CVE-2020-8903 was published May 24, 2022
In onCreate of ConfirmConnectActivity.java, there is a possible leak of Bluetooth information due... Moderate Unreviewed
CVE-2020-0215 was published May 24, 2022
In onStart of MainActivity.java, there is a possible bypass of developer settings requirements... Moderate Unreviewed
CVE-2020-0202 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database