GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,873
Erlang
37
GitHub Actions
36
Go
2,519
Maven
5,000+
npm
4,156
NuGet
736
pip
3,956
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+
508 advisories
Filter by severity
In Settings, there is a possible permission bypass due to an unsafe PendingIntent. This could...
Moderate
Unreviewed
CVE-2020-0302
was published
May 24, 2022
In Settings, there is a possible permission bypass due to an unsafe PendingIntent. This could...
Moderate
Unreviewed
CVE-2020-0307
was published
May 24, 2022
In Window Manager, there is a possible permission bypass due to an unsafe PendingIntent. This...
Moderate
Unreviewed
CVE-2020-0308
was published
May 24, 2022
In InputManagerService, there is a possible permission bypass due to an unsafe PendingIntent....
Moderate
Unreviewed
CVE-2020-0311
was published
May 24, 2022
In the wallpaper manager, there is a possible permission bypass due to an unsafe PendingIntent....
Moderate
Unreviewed
CVE-2020-0294
was published
May 24, 2022
In Java network APIs, there is possible access to sensitive network state due to a missing...
Moderate
Unreviewed
CVE-2020-0293
was published
May 24, 2022
In ADB server and USB server, there is a possible permission bypass due to an unsafe...
Moderate
Unreviewed
CVE-2020-0296
was published
May 24, 2022
In Telecom, there is a possible permission bypass due to an unsafe PendingIntent. This could lead...
Moderate
Unreviewed
CVE-2020-0295
was published
May 24, 2022
In devicepolicy service, there is a possible permission bypass due to an unsafe PendingIntent....
Moderate
Unreviewed
CVE-2020-0297
was published
May 24, 2022
In Telephony, there is a possible permission bypass due to a missing permission check. This could...
Moderate
Unreviewed
CVE-2020-0284
was published
May 24, 2022
In Telephony, there is a possible permission bypass due to a missing permission check. This could...
Moderate
Unreviewed
CVE-2020-0285
was published
May 24, 2022
In Telephony, there is a possible permission bypass due to a missing permission check. This could...
Moderate
Unreviewed
CVE-2020-0276
was published
May 24, 2022
Insecure inherited permissions in some Intel(R) PROSet/Wireless WiFi products on Windows* 7 and 8...
Moderate
Unreviewed
CVE-2020-0559
was published
May 24, 2022
An insufficient permission check vulnerability exists in Pulse Connect Secure <9.1R8 that allows...
Moderate
Unreviewed
CVE-2020-8219
was published
May 24, 2022
Insufficient policy enforcement in CSP in Google Chrome prior to 84.0.4147.89 allowed a remote...
Moderate
Unreviewed
CVE-2020-6527
was published
May 24, 2022
An issue was discovered in the Linux kernel 5.5 through 5.7.9, as used in Xen through 4.13.x for...
Moderate
Unreviewed
CVE-2020-15852
was published
May 24, 2022
Silverstripe has Incorrect Default Permissions
Moderate
CVE-2020-6165
was published
for
silverstripe/graphql
(Composer)
May 24, 2022
When constructing a permission prompt for WebRTC, a URI was supplied from the content process....
Moderate
Unreviewed
CVE-2020-12424
was published
May 24, 2022
When "%2F" was present in a manifest URL, Firefox's AppCache behavior may have become confused...
Moderate
Unreviewed
CVE-2020-12415
was published
May 24, 2022
In versions 13.1.0-13.1.3.3, 12.1.0-12.1.5.2, and 11.6.1-11.6.5.2, the BIG-IP system does not...
Moderate
Unreviewed
CVE-2020-5906
was published
May 24, 2022
A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507...
Moderate
Unreviewed
CVE-2020-8907
was published
May 24, 2022
A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507...
Moderate
Unreviewed
CVE-2020-8933
was published
May 24, 2022
A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507...
Moderate
Unreviewed
CVE-2020-8903
was published
May 24, 2022
In onCreate of ConfirmConnectActivity.java, there is a possible leak of Bluetooth information due...
Moderate
Unreviewed
CVE-2020-0215
was published
May 24, 2022
In onStart of MainActivity.java, there is a possible bypass of developer settings requirements...
Moderate
Unreviewed
CVE-2020-0202
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API