GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,600
Composer 5,005
Erlang 39
GitHub Actions 38
Go 2,635
Maven 6,103
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,416

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,196 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Docker Desktop allows local privilege escalation to NT AUTHORITY\SYSTEM because it mishandles the... High Unreviewed

CVE-2020-10665 was published May 24, 2022

VMware Fusion (11.x before 11.5.2), VMware Remote Console for Mac (11.x and prior before 11.0.1)... High Unreviewed

CVE-2020-3950 was published May 24, 2022

An elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer... High Unreviewed

CVE-2020-0787 was published May 24, 2022

A UNIX Symbolic Link (Symlink) Following vulnerability in chkstat of SUSE Linux Enterprise Server... Low Unreviewed

CVE-2020-8013 was published May 24, 2022

A UNIX Symbolic Link (Symlink) Following vulnerability in the mysql-systemd-helper of the mariadb... Low Unreviewed

CVE-2019-18901 was published May 24, 2022

A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of salt of SUSE Linux... High Unreviewed

CVE-2019-18897 was published May 24, 2022

UNIX Symbolic Link (Symlink) Following vulnerability in the cronjob shipped with nagios of SUSE... Moderate Unreviewed

CVE-2019-3698 was published May 24, 2022

Dell Client Consumer and Commercial Platforms contain an Arbitrary File Overwrite Vulnerability.... Low Unreviewed

CVE-2020-5324 was published May 24, 2022

An elevation of privilege vulnerability exists in the Windows Installer when MSI packages process... High Unreviewed

CVE-2020-0683 was published May 24, 2022

Kevin Backhouse discovered that apport would read a user-supplied configuration file with... Moderate Unreviewed

CVE-2019-11481 was published May 24, 2022

UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of privoxy on openSUSE Leap... High Unreviewed

CVE-2019-3699 was published May 24, 2022

UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of gnump3d in openSUSE Leap... High Unreviewed

CVE-2019-3697 was published May 24, 2022

A Symbolic Link (Symlink) Following vulnerability in the packaging of munin in openSUSE Factory,... High Unreviewed

CVE-2019-3694 was published May 24, 2022

A symlink following vulnerability in the packaging of mailman in SUSE Linux Enterprise Server 11,... High Unreviewed

CVE-2019-3693 was published May 24, 2022

The packaging of inn on SUSE Linux Enterprise Server 11; openSUSE Factory, Leap 15.1 allows local... High Unreviewed

CVE-2019-3692 was published May 24, 2022

A Symbolic Link (Symlink) Following vulnerability in the packaging of munge in SUSE SUSE Linux... High Unreviewed

CVE-2019-3691 was published May 24, 2022

UNIX Symbolic Link (Symlink) Following vulnerability in the trousers package of SUSE SUSE Linux... High Unreviewed

CVE-2019-18898 was published May 24, 2022

storeBackup.pl in storeBackup through 3.5 relies on the /tmp/storeBackup.lock pathname, which... High Unreviewed

CVE-2020-7040 was published May 24, 2022

An elevation of privilege vulnerability exists in the way the Update Notification Manager handles... Moderate Unreviewed

CVE-2020-0638 was published May 24, 2022

daemon/abrt-handle-upload.in in Automatic Bug Reporting Tool (ABRT), when moving problem reports... Moderate Unreviewed

CVE-2015-3147 was published May 24, 2022

The default event handling scripts in Automatic Bug Reporting Tool (ABRT) allow local users to... High Unreviewed

CVE-2015-1869 was published May 24, 2022

An elevation of privilege vulnerability exists when the Windows AppX Deployment Server improperly... High Unreviewed

CVE-2019-1483 was published May 24, 2022

The chkstat tool in the permissions package followed symlinks before commit... High Unreviewed

CVE-2019-3690 was published May 24, 2022

Dell Command Update versions prior to 3.1 contain an Arbitrary File Deletion Vulnerability. A... Moderate Unreviewed

CVE-2019-3750 was published May 24, 2022

Shibboleth Service Provider (SP) 3.x before 3.1.0 shipped a spec file that calls chown on files... High Unreviewed

CVE-2019-19191 was published May 24, 2022

Previous 1…21…48 Next

Previous 1 2 … 19 20 21 22 23 … 47 48 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,196 advisories