GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,638
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,645
Maven 6,108
npm 4,271
NuGet 760
pip 4,065
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,148

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,201 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability in the web-based user interface (web UI) of Cisco IOS XE Software could allow an... Moderate Unreviewed

CVE-2020-3223 was published May 24, 2022

Inappropriate implementation in installer in Google Chrome on OS X prior to 83.0.4103.61 allowed... Moderate Unreviewed

CVE-2020-6477 was published May 24, 2022

Avira Antivirus before 5.0.2003.1821 on Windows allows privilege escalation or a denial of... High Unreviewed

CVE-2020-12254 was published May 24, 2022

Apport creates a world writable lock file with root ownership in the world writable /var/lock... Low Unreviewed

CVE-2020-8831 was published May 24, 2022

A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of exim in openSUSE... High Unreviewed

CVE-2020-8015 was published May 24, 2022

Docker Desktop allows local privilege escalation to NT AUTHORITY\SYSTEM because it mishandles the... High Unreviewed

CVE-2020-10665 was published May 24, 2022

VMware Fusion (11.x before 11.5.2), VMware Remote Console for Mac (11.x and prior before 11.0.1)... High Unreviewed

CVE-2020-3950 was published May 24, 2022

An elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer... High Unreviewed

CVE-2020-0787 was published May 24, 2022

A UNIX Symbolic Link (Symlink) Following vulnerability in chkstat of SUSE Linux Enterprise Server... Low Unreviewed

CVE-2020-8013 was published May 24, 2022

A UNIX Symbolic Link (Symlink) Following vulnerability in the mysql-systemd-helper of the mariadb... Low Unreviewed

CVE-2019-18901 was published May 24, 2022

A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of salt of SUSE Linux... High Unreviewed

CVE-2019-18897 was published May 24, 2022

UNIX Symbolic Link (Symlink) Following vulnerability in the cronjob shipped with nagios of SUSE... Moderate Unreviewed

CVE-2019-3698 was published May 24, 2022

Dell Client Consumer and Commercial Platforms contain an Arbitrary File Overwrite Vulnerability.... Low Unreviewed

CVE-2020-5324 was published May 24, 2022

An elevation of privilege vulnerability exists in the Windows Installer when MSI packages process... High Unreviewed

CVE-2020-0683 was published May 24, 2022

Kevin Backhouse discovered that apport would read a user-supplied configuration file with... Moderate Unreviewed

CVE-2019-11481 was published May 24, 2022

UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of privoxy on openSUSE Leap... High Unreviewed

CVE-2019-3699 was published May 24, 2022

UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of gnump3d in openSUSE Leap... High Unreviewed

CVE-2019-3697 was published May 24, 2022

A Symbolic Link (Symlink) Following vulnerability in the packaging of munin in openSUSE Factory,... High Unreviewed

CVE-2019-3694 was published May 24, 2022

A symlink following vulnerability in the packaging of mailman in SUSE Linux Enterprise Server 11,... High Unreviewed

CVE-2019-3693 was published May 24, 2022

The packaging of inn on SUSE Linux Enterprise Server 11; openSUSE Factory, Leap 15.1 allows local... High Unreviewed

CVE-2019-3692 was published May 24, 2022

A Symbolic Link (Symlink) Following vulnerability in the packaging of munge in SUSE SUSE Linux... High Unreviewed

CVE-2019-3691 was published May 24, 2022

UNIX Symbolic Link (Symlink) Following vulnerability in the trousers package of SUSE SUSE Linux... High Unreviewed

CVE-2019-18898 was published May 24, 2022

storeBackup.pl in storeBackup through 3.5 relies on the /tmp/storeBackup.lock pathname, which... High Unreviewed

CVE-2020-7040 was published May 24, 2022

An elevation of privilege vulnerability exists in the way the Update Notification Manager handles... Moderate Unreviewed

CVE-2020-0638 was published May 24, 2022

daemon/abrt-handle-upload.in in Automatic Bug Reporting Tool (ABRT), when moving problem reports... Moderate Unreviewed

CVE-2015-3147 was published May 24, 2022

Previous 1…21…49 Next

Previous 1 2 … 19 20 21 22 23 … 48 49 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,201 advisories