Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,082 advisories

Loading
Privilege Escalation vulnerability in the File Lock component of McAfee Total Protection (MTP)... High Unreviewed
CVE-2021-23872 was published May 24, 2022
Windows WalletService Elevation of Privilege Vulnerability High Unreviewed
CVE-2021-31187 was published May 24, 2022
Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root... High Unreviewed
CVE-2020-28007 was published May 24, 2022
Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability This CVE ID is... High Unreviewed
CVE-2021-28321 was published May 24, 2022
VestaCP through 0.9.8-24 allows attackers to gain privileges by creating symlinks to files for... High Unreviewed
CVE-2021-30463 was published May 24, 2022
OpenVPN Connect installer for macOS version 3.2.6 and older may corrupt system critical files it... High Unreviewed
CVE-2020-15075 was published May 24, 2022
This vulnerability allows local attackers to delete arbitrary directories on affected... Moderate Unreviewed
CVE-2021-27241 was published May 24, 2022
There is an open race window when writing output in the following utilities in GNU binutils... Moderate Unreviewed
CVE-2021-20197 was published May 24, 2022
Privilege Escalation vulnerability in McAfee Data Loss Prevention (DLP) for Windows prior to 11.6... High Unreviewed
CVE-2020-7346 was published May 24, 2022
autoar-extractor.c in GNOME gnome-autoar before 0.3.1, as used by GNOME Shell, Nautilus, and... Moderate Unreviewed
CVE-2021-28650 was published May 24, 2022
An issue was discovered in GNOME GLib before 2.66.8. When g_file_replace() is used with... Moderate Unreviewed
CVE-2021-28153 was published May 24, 2022
Microsoft Windows Folder Redirection Elevation of Privilege Vulnerability High Unreviewed
CVE-2021-26887 was published May 24, 2022
Windows Update Stack Elevation of Privilege Vulnerability High Unreviewed
CVE-2021-26889 was published May 24, 2022
Windows Update Service Elevation of Privilege Vulnerability High Unreviewed
CVE-2021-26866 was published May 24, 2022
Windows User Profile Service Elevation of Privilege Vulnerability High Unreviewed
CVE-2021-26873 was published May 24, 2022
Windows Installer Elevation of Privilege Vulnerability High Unreviewed
CVE-2021-26862 was published May 24, 2022
Western Digital My Cloud OS 5 devices before 5.10.122 mishandle Symbolic Link Following on SMB... High Unreviewed
CVE-2021-3310 was published May 24, 2022
A vulnerability exists in IBM SPSS Modeler Subscription Installer that allows a user with create... Moderate Unreviewed
CVE-2020-4717 was published May 24, 2022
Windows Mobile Device Management Information Disclosure Vulnerability Moderate Unreviewed
CVE-2021-24084 was published May 24, 2022
Digi ConnectPort X2e before 3.2.30.6 allows an attacker to escalate privileges from the python... High Unreviewed
CVE-2020-12878 was published May 24, 2022
avahi-daemon-check-dns.sh in the Debian avahi package through 0.8-4 is executed as root via /etc... High Unreviewed
CVE-2021-26720 was published May 24, 2022
Mumble before 1.3.4 allows remote code execution if a victim navigates to a crafted URL on a... High Unreviewed
CVE-2021-27229 was published May 24, 2022
Privilege Escalation vulnerability in McAfee Total Protection (MTP) prior to 16.0.30 allows a... Moderate Unreviewed
CVE-2021-23873 was published May 24, 2022
autoar-extractor.c in GNOME gnome-autoar through 0.2.4, as used by GNOME Shell, Nautilus, and... Moderate Unreviewed
CVE-2020-36241 was published May 24, 2022
OnCommand Unified Manager Core Package versions prior to 5.2.5 may disclose sensitive account... Moderate Unreviewed
CVE-2020-8585 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database