GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,988
Maven
5,000+
npm
3,704
NuGet
661
pip
3,332
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
216 advisories
Filter by severity
In onReceive of AlertReceiver.java, there is a possible way to dismiss system dialog due to a...
High
Unreviewed
CVE-2021-0985
was published
Dec 16, 2021
In the broadcast definition in AndroidManifest.xml, there is a possible way to set the A2DP...
High
Unreviewed
CVE-2021-0999
was published
Dec 16, 2021
In getConfiguredNetworks of WifiServiceImpl.java, there is a possible way to determine whether an...
High
Unreviewed
CVE-2021-1004
was published
Dec 16, 2021
In getSigningKeySet of PackageManagerService.java, there is a missing permission check. This...
Moderate
Unreviewed
CVE-2021-1010
was published
Dec 16, 2021
In hasNamedWallpaper of WallpaperManagerService.java, there is a possible way to determine...
Moderate
Unreviewed
CVE-2021-1025
was published
Dec 16, 2021
There is a Permission control vulnerability in Huawei Smartphone.Successful exploitation of this...
High
Unreviewed
CVE-2021-37044
was published
Dec 9, 2021
World-writable permissions on the /tmp/tmate/sessions directory in tmate-ssh-server 2.3.0 allow a...
High
Unreviewed
CVE-2021-44512
was published
Dec 8, 2021
There is an Improper permission control vulnerability in Huawei Smartphone.Successful...
Moderate
Unreviewed
CVE-2021-37056
was published
Dec 8, 2021
There is a Improper Preservation of Permissions vulnerability in Huawei Smartphone.Successful...
High
Unreviewed
CVE-2021-37086
was published
Dec 8, 2021
There is a Improper Preservation of Permissions vulnerability in Huawei Smartphone.Successful...
High
Unreviewed
CVE-2021-37006
was published
Nov 24, 2021
Improper Preservation of Permissions in github.com/cloudflare/cfrpki/cmd/octorpki
Moderate
CVE-2021-3978
was published
for
github.com/cloudflare/cfrpki
(Go)
Nov 19, 2021
Insecure inherited permissions in the Intel(R) PROSet/Wireless WiFi software installer for...
High
Unreviewed
CVE-2021-0064
was published
Nov 18, 2021
HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0
Critical
CVE-2021-38553
was published
for
github.com/hashicorp/vault
(Go)
Aug 30, 2021
Access control flaw in Kiali
High
CVE-2021-3495
was published
for
github.com/kiali/kiali
(Go)
Jun 8, 2021
Insecure Permissions in Gogs
Moderate
CVE-2020-14958
was published
for
gogs.io/gogs
(Go)
May 18, 2021
It's possible to execute anything with the rights of the author of a macro which uses the {{wikimacrocontent}} macro
Low
CVE-2021-21379
was published
for
org.xwiki.platform:xwiki-platform-rendering-wikimacro-store
(Maven)
Mar 23, 2021
ProTip!
Advisories are also available from the
GraphQL API