Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,926
Maven
5,000+
npm
4,581
NuGet
786
pip
4,292
Pub
12
RubyGems
979
Rust
1,113
Swift
49
Unreviewed advisories
All unreviewed
5,000+

1,021 advisories

Loading
Zoho ManageEngine PAM360 before build 5303 allows attackers to modify a few aspects of... Critical Unreviewed
CVE-2021-44525 was published Dec 21, 2021
Zoho ManageEngine Access Manager Plus before 4203 allows anyone to view a few data elements (e.g.... Critical Unreviewed
CVE-2021-44676 was published Dec 21, 2021
Insecure permissions on user namespace / fakeroot temporary rootfs in Singularity High
CVE-2020-25039 was published for github.com/sylabs/singularity (Go) Dec 20, 2021
xman
Credited to xman
Malicious Atomix node queries expose sensitive information Moderate
CVE-2020-35215 was published for io.atomix:atomix (Maven) Dec 17, 2021
KNIME Server before 4.12.6 and 4.13.x before 4.13.4 (when installed in unattended mode) keeps the... Moderate Unreviewed
CVE-2021-45097 was published Dec 17, 2021
An issue was discovered in HTCondor before 8.8.15, 9.0.x before 9.0.4, and 9.1.x before 9.1.2.... High Unreviewed
CVE-2021-45101 was published Dec 17, 2021
Exposure of Resource to Wrong Sphere in org.craftercms:crafter-search Critical
CVE-2021-23264 was published for org.craftercms:crafter-search (Maven) Dec 16, 2021
Visual Basic for Applications Information Disclosure Vulnerability Moderate Unreviewed
CVE-2021-42295 was published Dec 16, 2021
Microsoft Local Security Authority Server (lsasrv) Information Disclosure Vulnerability Moderate Unreviewed
CVE-2021-43216 was published Dec 16, 2021
Microsoft Message Queuing Information Disclosure Vulnerability This CVE ID is unique from CVE... High Unreviewed
CVE-2021-43222 was published Dec 16, 2021
Windows Common Log File System Driver Information Disclosure Vulnerability Moderate Unreviewed
CVE-2021-43224 was published Dec 16, 2021
Storage Spaces Controller Information Disclosure Vulnerability This CVE ID is unique from CVE... Moderate Unreviewed
CVE-2021-43227 was published Dec 16, 2021
Storage Spaces Controller Information Disclosure Vulnerability This CVE ID is unique from CVE... Moderate Unreviewed
CVE-2021-43235 was published Dec 16, 2021
Microsoft Defender for IoT Information Disclosure Vulnerability High Unreviewed
CVE-2021-43888 was published Dec 16, 2021
In code generated by BuildParcelFields of generate_cpp.cpp, there is a possible way for a crafted... Moderate Unreviewed
CVE-2021-0966 was published Dec 16, 2021
In getSerialForPackage of DeviceIdentifiersPolicyService.java, there is a possible way to... Low Unreviewed
CVE-2021-0978 was published Dec 16, 2021
In getOrganizationNameForUser of DevicePolicyManagerService.java, there is a possible... Low Unreviewed
CVE-2021-0982 was published Dec 16, 2021
In hasGrantedPolicy of DevicePolicyManagerService.java, there is a possible information... Moderate Unreviewed
CVE-2021-0986 was published Dec 16, 2021
In requestRouteToHostAddress of ConnectivityService.java, there is a possible way to determine... Low Unreviewed
CVE-2021-0994 was published Dec 16, 2021
Product: AndroidVersions: Android kernelAndroid ID: A-195580473References: N/A High Unreviewed
CVE-2021-1045 was published Dec 16, 2021
In gadget_dev_desc_UDC_show of configfs.c, there is a possible disclosure of kernel heap memory... Moderate Unreviewed
CVE-2021-39648 was published Dec 16, 2021
Product: AndroidVersions: Android kernelAndroid ID: A-201537251References: N/A High Unreviewed
CVE-2021-39646 was published Dec 16, 2021
A vulnerability has been identified in SiPass integrated V2.76 (All versions), SiPass integrated... High Unreviewed
CVE-2021-44522 was published Dec 15, 2021
A vulnerability has been identified in SiPass integrated V2.76 (All versions), SiPass integrated... Critical Unreviewed
CVE-2021-44523 was published Dec 15, 2021
A vulnerability has been identified in SiPass integrated V2.76 (All versions), SiPass integrated... Critical Unreviewed
CVE-2021-44524 was published Dec 15, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database