GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
54 advisories
Filter by severity
A flaw in grub2 was found where its configuration file, known as grub.cfg, is being created with...
Low
Unreviewed
CVE-2021-3981
was published
Mar 11, 2022
The Standard security setting for Mandrake-Security package (msec) in Mandrake 8.2 installs home...
Low
Unreviewed
CVE-2002-1713
was published
Apr 30, 2022
SilverCity before 0.9.5-r1 installs (1) cgi-styler-form.py, (2) cgi-styler.py, and (3)...
Low
Unreviewed
CVE-2005-1941
was published
May 1, 2022
dracut.sh in dracut, as used in Red Hat Enterprise Linux 6, Fedora 16 and 17, and possibly other...
Low
Unreviewed
CVE-2012-4453
was published
May 13, 2022
The BIOS in Intel NUC systems based on 6th Gen Intel Core processors prior to version SY0059 may...
Low
Unreviewed
CVE-2017-5686
was published
May 13, 2022
The BIOS in Intel NUC systems based on 6th Gen Intel Core processors prior to version KY0045 may...
Low
Unreviewed
CVE-2017-5685
was published
May 13, 2022
The BIOS in Intel Compute Stick systems based on 6th Gen Intel Core processors prior to version...
Low
Unreviewed
CVE-2017-5684
was published
May 13, 2022
ax25_create in net/ax25/af_ax25.c in the AF_AX25 network module in the Linux kernel through 5.3.2...
Low
Unreviewed
CVE-2019-17052
was published
May 24, 2022
llcp_sock_create in net/nfc/llcp_sock.c in the AF_NFC network module in the Linux kernel through...
Low
Unreviewed
CVE-2019-17056
was published
May 24, 2022
ieee802154_create in net/ieee802154/socket.c in the AF_IEEE802154 network module in the Linux...
Low
Unreviewed
CVE-2019-17053
was published
May 24, 2022
atalk_create in net/appletalk/ddp.c in the AF_APPLETALK network module in the Linux kernel...
Low
Unreviewed
CVE-2019-17054
was published
May 24, 2022
All Samba versions 4.x.x before 4.9.17, 4.10.x before 4.10.11 and 4.11.x before 4.11.3 have an...
Low
Unreviewed
CVE-2019-14861
was published
May 24, 2022
In calc_vm_may_flags of ashmem.c, there is a possible arbitrary write to shared memory due to a...
Low
Unreviewed
CVE-2020-0009
was published
May 24, 2022
Improper permission or value checking in the CLI console may allow a non-privileged user to...
Low
Unreviewed
CVE-2019-5593
was published
May 24, 2022
Insufficient policy enforcement in enterprise in Google Chrome prior to 83.0.4103.61 allowed a...
Low
Unreviewed
CVE-2020-6480
was published
May 24, 2022
In updateUidProcState of AppOpsService.java, there is a possible permission bypass due to a logic...
Low
Unreviewed
CVE-2020-0121
was published
May 24, 2022
In dump of RollbackManagerServiceImpl.java, there is a possible backup metadata exposure due to a...
Low
Unreviewed
CVE-2020-0135
was published
May 24, 2022
In getUiccCardsInfo of PhoneInterfaceManager.java, there is a possible permissions bypass due to...
Low
Unreviewed
CVE-2020-0107
was published
May 24, 2022
In setProcessMemoryTrimLevel of ActivityManagerService.java, there is a missing permission check....
Low
Unreviewed
CVE-2020-0412
was published
May 24, 2022
A lock screen issue allowed access to contacts on a locked device. This issue was addressed with...
Low
Unreviewed
CVE-2019-8777
was published
May 24, 2022
SAP ERP Client for E-Bilanz, version - 1.0, installation sets Incorrect default filesystem...
Low
Unreviewed
CVE-2020-26807
was published
May 24, 2022
Audacity through 2.3.3 saves temporary files to /var/tmp/audacity-$USER by default. After...
Low
Unreviewed
CVE-2020-11867
was published
May 24, 2022
In sendConfiguredNetworkChangedBroadcast of WifiConfigManager.java, there is a possible leak of...
Low
Unreviewed
CVE-2020-0459
was published
May 24, 2022
In getGpuStatsGlobalInfo and getGpuStatsAppInfo of GpuService.cpp, there is a possible permission...
Low
Unreviewed
CVE-2020-27057
was published
May 24, 2022
In SELinux policies of mls, there is a missing permission check. This could lead to local...
Low
Unreviewed
CVE-2020-27056
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API