GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,600
Composer 5,005
Erlang 39
GitHub Actions 38
Go 2,635
Maven 6,103
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,396

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,196 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

checkpath in OpenRC through 0.42.1 might allow local users to take ownership of arbitrary files... Moderate Unreviewed

CVE-2018-21269 was published May 24, 2022

opentmpfiles through 0.3.1 allows local users to take ownership of arbitrary files because d... Moderate Unreviewed

CVE-2017-18925 was published May 24, 2022

An issue existed within the path validation logic for symlinks. This issue was addressed with... High Unreviewed

CVE-2020-9900 was published May 24, 2022

An issue existed within the path validation logic for symlinks. This issue was addressed with... High Unreviewed

CVE-2020-9901 was published May 24, 2022

An elevation of privilege vulnerability exists when Group Policy improperly checks access, aka ... High Unreviewed

CVE-2020-16939 was published May 24, 2022

An elevation of privilege vulnerability exists when the OneDrive for Windows Desktop application... Low Unreviewed

CVE-2020-16851 was published May 24, 2022

An elevation of privilege vulnerability exists when the OneDrive for Windows Desktop application... Low Unreviewed

CVE-2020-16853 was published May 24, 2022

Improper Access Control vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7... Moderate Unreviewed

CVE-2020-7319 was published May 24, 2022

In KDE Ark before 20.08.1, a crafted TAR archive with symlinks can install files outside the... Moderate Unreviewed

CVE-2020-24654 was published May 24, 2022

A vulnerability in Trend Micro Apex One and OfficeScan XG SP1 on Microsoft Windows may allow an... High Unreviewed

CVE-2020-24556 was published May 24, 2022

A vulnerability in Trend Micro Apex One on macOS may allow an attacker to manipulate a certain... High Unreviewed

CVE-2020-24559 was published May 24, 2022

A flaw was found in chrony versions before 3.5.1 when creating the PID file under the /var/run... Low Unreviewed

CVE-2020-14367 was published May 24, 2022

Net-SNMP through 5.7.3 allows Escalation of Privileges because of UNIX symbolic link (symlink)... High Unreviewed

CVE-2020-15861 was published May 24, 2022

An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root... Moderate Unreviewed

CVE-2020-24332 was published May 24, 2022

ZoneAlarm Anti-Ransomware before version 1.0.713 copies files for the report from a directory... Low Unreviewed

CVE-2020-6012 was published May 24, 2022

Adobe Creative Cloud Desktop Application versions 5.1 and earlier have a symlink vulnerability... High Unreviewed

CVE-2020-9682 was published May 24, 2022

A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could... Moderate Unreviewed

CVE-2020-3437 was published May 24, 2022

Privilege Escalation vulnerability in McAfee Total Protection (MTP) before 16.0.R26 allows local... Low Unreviewed

CVE-2020-7282 was published May 24, 2022

An issue was discovered in Icinga2 before v2.12.0-rc1. The prepare-dirs script (run as part of... Moderate Unreviewed

CVE-2020-14004 was published May 24, 2022

A vulnerability in the Cisco Application Framework component of the Cisco IOx application... Moderate Unreviewed

CVE-2020-3237 was published May 24, 2022

A vulnerability in the web-based user interface (web UI) of Cisco IOS XE Software could allow an... Moderate Unreviewed

CVE-2020-3223 was published May 24, 2022

Inappropriate implementation in installer in Google Chrome on OS X prior to 83.0.4103.61 allowed... Moderate Unreviewed

CVE-2020-6477 was published May 24, 2022

Avira Antivirus before 5.0.2003.1821 on Windows allows privilege escalation or a denial of... High Unreviewed

CVE-2020-12254 was published May 24, 2022

Apport creates a world writable lock file with root ownership in the world writable /var/lock... Low Unreviewed

CVE-2020-8831 was published May 24, 2022

A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of exim in openSUSE... High Unreviewed

CVE-2020-8015 was published May 24, 2022

Previous 1…20…48 Next

Previous 1 2 … 18 19 20 21 22 … 47 48 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,196 advisories