GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,638
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,645
Maven 6,108
npm 4,271
NuGet 760
pip 4,065
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,156

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,388 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Adobe Creative Cloud Desktop Application versions 5.1 and earlier have an insecure file... High Unreviewed

CVE-2020-9671 was published May 24, 2022

Sonatype Nexus Repository Manager OSS/Pro version before 3.25.1 allows Remote Code Execution. High Unreviewed

CVE-2020-15871 was published May 24, 2022

Wowza Streaming Engine through 2019-11-28 has Insecure Permissions. High Unreviewed

CVE-2019-19455 was published May 24, 2022

Insecure inherited permissions in some Intel(R) PROSet/Wireless WiFi products on Windows* 7 and 8... Moderate Unreviewed

CVE-2020-0559 was published May 24, 2022

An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root... High Unreviewed

CVE-2020-24330 was published May 24, 2022

An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root... High Unreviewed

CVE-2020-24331 was published May 24, 2022

In the Linux kernel before 5.7.8, fs/nfsd/vfs.c (in the NFS server) can set incorrect permissions... Moderate Unreviewed

CVE-2020-24394 was published May 24, 2022

Elementor 2.9.5 and below WordPress plugin allows authenticated users to activate its safe mode... Moderate Unreviewed

CVE-2020-20634 was published May 24, 2022

Cloud Foundry CAPI (Cloud Controller), versions prior to 1.97.0, when used in a deployment where... Moderate Unreviewed

CVE-2020-5417 was published May 24, 2022

OpenZFS before 2.0.0-rc1, when used on FreeBSD, allows execute permissions for all directories. Moderate Unreviewed

CVE-2020-24716 was published May 24, 2022

A vulnerability in the management consoles of Trend Micro Deep Security 10.0-12.0 and Trend Micro... Moderate Unreviewed

CVE-2020-8602 was published May 24, 2022

ForLogic Qualiex v1 and v3 allows any authenticated customer to achieve privilege escalation via... Moderate Unreviewed

CVE-2020-24028 was published May 24, 2022

Ingenico Telium 2 POS Telium2 OS allow bypass of file-reading restrictions via the NTPT3 protocol... Low Unreviewed

CVE-2018-17766 was published May 24, 2022

Privilege Escalation Vulnerability in the installer in McAfee Data Exchange Layer (DXL) Client... High Unreviewed

CVE-2020-7314 was published May 24, 2022

A security feature bypass vulnerability exists when a Windows Projected Filesystem improperly... Moderate Unreviewed

CVE-2020-0805 was published May 24, 2022

A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to... Low Unreviewed

CVE-2020-0904 was published May 24, 2022

A security feature bypass vulnerability exists in Windows Defender Application Control (WDAC)... High Unreviewed

CVE-2020-0951 was published May 24, 2022

The rbd block device driver in drivers/block/rbd.c in the Linux kernel through 5.8.9 used... Moderate Unreviewed

CVE-2020-25284 was published May 24, 2022

A flaw was found in the Linux Kernel before 5.8-rc6 in the ZRAM kernel module, where a user with... Moderate Unreviewed

CVE-2020-10781 was published May 24, 2022

In the audio server, there is a missing permission check. This could lead to local escalation of... High Unreviewed

CVE-2020-0089 was published May 24, 2022

An issue was discovered in Gradle Enterprise 2018.2 - 2020.2.4. CSRF mitigation can be bypassed... High Unreviewed

CVE-2020-15776 was published May 24, 2022

IBM Data Risk Manager (iDNA) 2.0.6 could allow an authenticated user to bypass security and... High Unreviewed

CVE-2020-4611 was published May 24, 2022

Insufficient policy enforcement in iOSWeb in Google Chrome on iOS prior to 85.0.4183.83 allowed a... Moderate Unreviewed

CVE-2020-6558 was published May 24, 2022

Insufficient policy enforcement in Blink in Google Chrome prior to 85.0.4183.83 allowed a remote... Moderate Unreviewed

CVE-2020-6562 was published May 24, 2022

A vulnerability in the file system permissions of Cisco IOS XE Software could allow an... Moderate Unreviewed

CVE-2020-3503 was published May 24, 2022

Previous 1…25…56 Next

Previous 1 2 … 23 24 25 26 27 … 55 56 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,388 advisories