Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,388 advisories

Loading
The Mozilla Maintenance Service granted SERVICE_START access to BUILTIN|Users which, in a domain... Moderate Unreviewed
CVE-2021-29951 was published May 24, 2022
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 could allow an... High Unreviewed
CVE-2020-4945 was published May 24, 2022
The Windows Installation component of TIBCO Software Inc.'s TIBCO Enterprise Runtime for R -... High Unreviewed
CVE-2021-23275 was published May 24, 2022
Talk 4 in Coral before 4.12.1 allows remote attackers to discover e-mail addresses and other... High Unreviewed
CVE-2021-35970 was published May 24, 2022
An issue was discovered in the Translate extension in MediaWiki through 1.36. The Aggregategroups... Moderate Unreviewed
CVE-2021-36129 was published May 24, 2022
Incorrect permission assignment for critical resource vulnerability in QSAN Storage Manager... Moderate Unreviewed
CVE-2021-32526 was published May 24, 2022
IBM UrbanCode Deploy (UCD) 6.2.7.3, 6.2.7.4, 6.2.7.8 , 6.2.7.9, 7.0.3.0, 7.0.4.0, 7.0.5.4, 7.1.0... Moderate Unreviewed
CVE-2021-29711 was published May 24, 2022
IBM Cloud Pak for Applications 4.3 could allow an authenticated user gain escalated privilesges... High Unreviewed
CVE-2021-20423 was published May 24, 2022
A vulnerability has been identified in SIMATIC PCS 7 V8.2 and earlier (All versions), SIMATIC PCS... High Unreviewed
CVE-2021-31894 was published May 24, 2022
The Lexmark Universal Print Driver version 2.15.1.0 and below, G2 driver 2.7.1.0 and below, G3... High Unreviewed
CVE-2021-35449 was published May 24, 2022
An incorrect permission assignment denial-of-service vulnerability in Trend Micro Apex One, Apex... High Unreviewed
CVE-2021-32463 was published May 24, 2022
Windows Elevation of Privilege Vulnerability High Unreviewed
CVE-2021-36934 was published May 24, 2022
Acronis True Image prior to 2021 Update 5 for Windows allowed local privilege escalation due to... High Unreviewed
CVE-2021-32577 was published May 24, 2022
Dell PowerScale OneFS 9.1.0.x contains an improper privilege management vulnerability. It may... High Unreviewed
CVE-2021-21567 was published May 24, 2022
In SapphireIMS 5.0, it is possible to create local administrator on any client with credentials... High Unreviewed
CVE-2020-25564 was published May 24, 2022
In SapphireIMS 4097_1, a guest user is able to change the password of an administrative user by... Moderate Unreviewed
CVE-2017-16631 was published May 24, 2022
In SapphireIMS 4097_1, a guest user can create a local administrator account on any system that... High Unreviewed
CVE-2017-16630 was published May 24, 2022
The Canon TR150 print driver through 3.71.2.10 is vulnerable to a privilege escalation issue.... High Unreviewed
CVE-2021-38085 was published May 24, 2022
In cPanel before 96.0.8, weak permissions on web stats can lead to information disclosure (SEC-584). Moderate Unreviewed
CVE-2021-38590 was published May 24, 2022
Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an incorrect permission assignment for... Moderate Unreviewed
CVE-2021-36280 was published May 24, 2022
Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an incorrect permission assignment for... High Unreviewed
CVE-2021-36279 was published May 24, 2022
Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an incorrect permission assignment... High Unreviewed
CVE-2021-36281 was published May 24, 2022
Certain Canon devices manufactured in 2012 through 2020 (such as imageRUNNER ADVANCE iR-ADV C5250... High Unreviewed
CVE-2021-38154 was published May 24, 2022
An issue in the /config/config.php component of Indexhibit 2.1.5 allows attackers to arbitrarily... Moderate Unreviewed
CVE-2020-18127 was published May 24, 2022
A configuration issue in Indexhibit 2.1.5 allows authenticated attackers to modify .php files,... High Unreviewed
CVE-2020-18121 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database