GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
984 advisories
Filter by severity
Incorrect default permissions in the installer for the Intel(R) oneAPI Rendering Toolkit before...
High
Unreviewed
CVE-2021-33071
was published
Nov 18, 2021
Incorrect default permissions in the installer for the Intel(R) NUC M15 Laptop Kit Integrated...
High
Unreviewed
CVE-2021-33088
was published
Nov 18, 2021
Barracuda Network Access Client before 5.2.2 creates a Temporary File in a Directory with...
High
Unreviewed
CVE-2021-42711
was published
Dec 3, 2021
A privilege escalation vulnerability exists in the Remote Server functionality of Dream Report...
High
Unreviewed
CVE-2021-21957
was published
Dec 9, 2021
The CLI 1.0.0 for Amazon AWS OpenSearch has weak permissions for the configuration file.
Critical
Unreviewed
CVE-2021-44833
was published
Dec 13, 2021
In TBD of TBD, there is a possible way to access PIN protected settings bypassing PIN...
High
Unreviewed
CVE-2021-39651
was published
Dec 16, 2021
In TBD of fvp.c, there is a possible way to glitch CPU behavior due to a missing permission check...
High
Unreviewed
CVE-2021-39639
was published
Dec 16, 2021
In isRequestPinItemSupported of ShortcutService.java, there is a possible cross-user leak of...
Moderate
Unreviewed
CVE-2021-0979
was published
Dec 16, 2021
In SRAMROM, there is a possible permission bypass due to an insecure permission setting. This...
High
Unreviewed
CVE-2021-0904
was published
Dec 16, 2021
Automox Agent before 32 on Windows incorrectly sets permissions on a temporary directory.
High
Unreviewed
CVE-2021-43326
was published
Dec 16, 2021
Automox Agent 33 on Windows incorrectly sets permissions on a temporary directory. NOTE: this...
High
Unreviewed
CVE-2021-43325
was published
Dec 16, 2021
An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37...
High
Unreviewed
CVE-2021-44858
was published
Dec 21, 2021
A privilege escalation vulnerability exists in the Windows version of installation for Advantech...
High
Unreviewed
CVE-2021-21910
was published
Dec 23, 2021
A privilege escalation vulnerability exists in the Windows version of installation for Advantech...
High
Unreviewed
CVE-2021-21912
was published
Dec 23, 2021
Sandbox component in Avast Antivirus prior to 20.4 has an insecure permission which could be...
High
Unreviewed
CVE-2021-45335
was published
Dec 28, 2021
There is a Vulnerability of obtaining broadcast information improperly due to improper broadcast...
High
Unreviewed
CVE-2021-39967
was published
Jan 4, 2022
PackageManagerService has a Permissions, Privileges, and Access Controls vulnerability ...
Moderate
Unreviewed
CVE-2021-37132
was published
Jan 4, 2022
Laundry Booking Management System 1.0 (Latest) and previous versions are affected by a remote...
Critical
Unreviewed
CVE-2021-45003
was published
Jan 11, 2022
The cellular module has a vulnerability in permission management. Successful exploitation of this...
High
Unreviewed
CVE-2021-40004
was published
Jan 11, 2022
A Incorrect Default Permissions vulnerability in the parsec package of openSUSE Factory allows...
High
Unreviewed
CVE-2021-36781
was published
Jan 15, 2022
Sourcecodester Hospital's Patient Records Management System 1.0 is vulnerable to Insecure...
Moderate
Unreviewed
CVE-2022-22296
was published
Jan 25, 2022
xzs-mysql >= t3.4.0 is vulnerable to Insecure Permissions. The front end of this open source...
High
Unreviewed
CVE-2021-46086
was published
Jan 26, 2022
OneBlog <= 2.2.8 is vulnerable to Insecure Permissions. Low level administrators can delete high...
Moderate
Unreviewed
CVE-2021-46085
was published
Jan 26, 2022
An incorrect default permission vulnerability exists in the cgiserver.cgi cgi_check_ability...
High
Unreviewed
CVE-2021-40414
was published
Jan 29, 2022
An incorrect default permission vulnerability exists in the cgiserver.cgi cgi_check_ability...
High
Unreviewed
CVE-2021-40413
was published
Jan 29, 2022
ProTip!
Advisories are also available from the
GraphQL API