Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

987 advisories

Loading
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 traditional is vulnerable to a privilege... Moderate Unreviewed
CVE-2020-4362 was published May 24, 2022
Writing to an unprivileged file from a privileged OVRRedir.exe process in Oculus Desktop before 1... Moderate Unreviewed
CVE-2020-1885 was published May 24, 2022
In NCH Express Invoice 7.25, an authenticated low-privilege user can enter a crafted URL to... Moderate Unreviewed
CVE-2020-11561 was published May 24, 2022
Symantec Data Center Security Manager Component, prior to 6.8.2 (aka 6.8 MP2), may be susceptible... Moderate Unreviewed
CVE-2020-5832 was published May 24, 2022
IBM Spectrum Scale 4.2 and 5.0 could allow a local unprivileged attacker with intimate knowledge... Moderate Unreviewed
CVE-2020-4273 was published May 24, 2022
In UniFi Video v3.10.1 (for Windows 7/8/10 x64) there is a Local Privileges Escalation to SYSTEM... Moderate Unreviewed
CVE-2020-8146 was published May 24, 2022
An issue was discovered in XAMPP before 7.2.29, 7.3.x before 7.3.16 , and 7.4.x before 7.4.4 on... Moderate Unreviewed
CVE-2020-11107 was published May 24, 2022
A permissions issue existed. This issue was addressed with improved permission validation. This... Moderate Unreviewed
CVE-2020-3913 was published May 24, 2022
An issue was discovered in Deskpro before 2019.8.0. The /api/apps/* endpoints failed to properly... Moderate Unreviewed
CVE-2020-11465 was published May 24, 2022
An issue was discovered in Deskpro before 2019.8.0. The /api/email_accounts endpoint failed to... Moderate Unreviewed
CVE-2020-11463 was published May 24, 2022
An issue was discovered in Avast Antivirus before 20. The aswTask RPC endpoint for the TaskEx... Moderate Unreviewed
CVE-2020-10862 was published May 24, 2022
On BIG-IP 15.0.0-15.0.1.2, 14.1.0-14.1.2.2, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5.1... Moderate Unreviewed
CVE-2020-5858 was published May 24, 2022
Insecure, default path permissions in PHOENIX CONTACT PC WORX SRT through 1.14 allow for local... Moderate Unreviewed
CVE-2020-10939 was published May 24, 2022
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 traditional is vulnerable to a privilege... Moderate Unreviewed
CVE-2020-4276 was published May 24, 2022
A vulnerability was found in all openshift/mediawiki-apb 4.x.x versions prior to 4.3.0, where an... Moderate Unreviewed
CVE-2019-19345 was published May 24, 2022
In Octopus Deploy before 2020.1.5, for customers running on-premises Active Directory linked to... Moderate Unreviewed
CVE-2020-10678 was published May 24, 2022
An insecure modification vulnerability in the /etc/passwd file was found in the openshift/ocp... Moderate Unreviewed
CVE-2019-19355 was published May 24, 2022
An insecure modification vulnerability in the /etc/passwd file was found in the container... Moderate Unreviewed
CVE-2019-19351 was published May 24, 2022
Linux Guest VMs running on VMware Workstation (15.x before 15.5.2) and Fusion (11.x before 11.5.2... Moderate Unreviewed
CVE-2020-3948 was published May 24, 2022
An elevation of privilege vulnerability exists in Service Fabric File Store Service under certain... Moderate Unreviewed
CVE-2020-0902 was published May 24, 2022
An elevation of privilege vulnerability exists when the Windows Work Folder Service improperly... Moderate Unreviewed
CVE-2020-0897 was published May 24, 2022
An elevation of privilege vulnerability exists when the Windows Work Folder Service improperly... Moderate Unreviewed
CVE-2020-0866 was published May 24, 2022
An elevation of privilege vulnerability exists when the Windows Update Orchestrator Service... Moderate Unreviewed
CVE-2020-0868 was published May 24, 2022
An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles... Moderate Unreviewed
CVE-2020-0857 was published May 24, 2022
An elevation of privilege vulnerability exists when the Windows Update Orchestrator Service... Moderate Unreviewed
CVE-2020-0867 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database