GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,960
Composer 4,279
Erlang 31
GitHub Actions 21
Go 2,056
Maven 5,237
npm 3,740
NuGet 668
pip 3,421
Pub 12
RubyGems 891
Rust 873
Swift 36

Unreviewed advisories

All unreviewed 238,929

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

521 advisories

Filter by severity

Sort by

Least recently updated

Adobe Genuine Integrity Service versions Version 6.4 and earlier have an insecure file... High Unreviewed

CVE-2020-3766 was published May 24, 2022

WinGate v9.4.1.5998 has insecure permissions for the installation directory, which allows local... High Unreviewed

CVE-2020-13866 was published May 24, 2022

A permissions issue existed. This issue was addressed with improved permission validation. This... High Unreviewed

CVE-2020-9817 was published May 24, 2022

I2P before 0.9.46 allows local users to gain privileges via a Trojan horse I2PSvc.exe file... High Unreviewed

CVE-2020-13431 was published May 24, 2022

An attacker with physical access to a PAX Point Of Sale device with ProlinOS through 2.4.161... High Unreviewed

CVE-2020-28044 was published May 24, 2022

Incorrect default permissions in the Intel(R) RealSense(TM) D400 Series Dynamic Calibration Tool... High Unreviewed

CVE-2020-12306 was published May 24, 2022

Incorrect default permissions in Windows(R) installer in Intel(R) AMT SDK versions before 14.0.0... High Unreviewed

CVE-2020-12354 was published May 24, 2022

u'An Unaligned address or size can propagate to the database due to improper page permissions and... High Unreviewed

CVE-2020-3638 was published May 24, 2022

Improper permissions in the installer for the Intel(R) Battery Life Diagnostic Tool before... High Unreviewed

CVE-2020-12346 was published May 24, 2022

Insecure permissions in Nakivo Backup & Replication Director version 9.4.0.r43656 on Linux allow... High Unreviewed

CVE-2020-15850 was published May 24, 2022

Improper permissions in some Intel(R) High Definition Audio drivers before version 9.21.00.4561... High Unreviewed

CVE-2020-12307 was published May 24, 2022

Incorrect default permissions in the Intel(R) Board ID Tool version v.1.01 may allow an... High Unreviewed

CVE-2020-24456 was published May 24, 2022

Kia Motors Head Unit with Software version: SOP.003.30.18.0703, SOP.005.7.181019, and SOP.007.1... High Unreviewed

CVE-2020-8539 was published May 24, 2022

A local privilege elevation vulnerability exists in the file system permissions of LogicalDoc 8.5... High Unreviewed

CVE-2020-13542 was published May 24, 2022

Dell Wyse ThinOS 8.6 and prior versions contain an insecure default configuration vulnerability.... High Unreviewed

CVE-2020-29491 was published May 24, 2022

Foresight GC3 Launch Monitor 1.3.15.68 ships with a Target Communication Framework (TCF) service... High Unreviewed

CVE-2022-40187 was published Oct 13, 2022

In openAssetFileListener of ContactsProvider2.java, there is a possible permission bypass due to... High Unreviewed

CVE-2020-0486 was published May 24, 2022

An exploitable local privilege elevation vulnerability exists in the file system permissions of... High Unreviewed

CVE-2020-13540 was published May 24, 2022

An exploitable local privilege elevation vulnerability exists in the file system permissions of... High Unreviewed

CVE-2020-13537 was published May 24, 2022

An exploitable local privilege elevation vulnerability exists in the file system permissions of... High Unreviewed

CVE-2020-13536 was published May 24, 2022

upsMonitor in ViewPower (aka ViewPowerHTML) 1.04-21012 through 1.04-21353 has insecure... High Unreviewed

CVE-2021-30490 was published Aug 17, 2022

The Microsoft Windows Installer for Atlassian Bitbucket Server and Data Center before version 6... High Unreviewed

CVE-2020-36233 was published May 24, 2022

An exploitable local privilege elevation vulnerability exists in the file system permissions of... High Unreviewed

CVE-2020-13555 was published May 24, 2022

inSync Client installer for macOS versions v6.8.0 and prior could allow an attacker to gain... High Unreviewed

CVE-2020-5798 was published May 24, 2022

A vulnerability has been identified in DIGSI 4 (All versions < V4.94 SP1 HF 1). Several folders... High Unreviewed

CVE-2020-25245 was published May 24, 2022

Previous 1 2 3 4 5 6 … 20 21 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

521 advisories