Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
49
GitHub Actions
49
Go
3,426
Maven
5,000+
npm
5,000+
NuGet
882
pip
4,670
Pub
13
RubyGems
1,029
Rust
1,212
Swift
53
Unreviewed advisories
All unreviewed
5,000+

1,106 advisories

Loading
NCH Reflect CRM 3.01 allows local users to discover cleartext user account information by reading... Low Unreviewed
CVE-2021-37468 was published May 24, 2022
IBM Cloud Pak System 2.3 could allow a local user in some situations to view the artifacts of... Low Unreviewed
CVE-2021-20478 was published May 24, 2022
Dell Wyse Management Suite versions 3.2 and earlier contain a full path disclosure vulnerability.... Low Unreviewed
CVE-2021-21587 was published May 24, 2022
A flaw was found in the Linux kernel in versions before 5.4.92 in the BPF protocol. This flaw... Low Unreviewed
CVE-2021-20239 was published May 24, 2022
A data exposure flaw was found in Ansible Tower in versions before 3.7.2, where sensitive data... Low Unreviewed
CVE-2020-14329 was published May 24, 2022
A flaw was found in Ansible Tower when running jobs. This flaw allows an attacker to access the... Low Unreviewed
CVE-2020-10698 was published May 24, 2022
Dell Hybrid Client versions prior to 1.5 contain an information exposure vulnerability. A local... Low Unreviewed
CVE-2021-21534 was published May 24, 2022
A pendingIntent hijacking vulnerability in Secure Folder prior to SMR APR-2021 Release 1 allows... Low Unreviewed
CVE-2021-25364 was published May 24, 2022
Improper access control in Samsung Pay mini application prior to v4.0.14 allows unauthorized... Low Unreviewed
CVE-2021-25331 was published May 24, 2022
Improper access control in Samsung Pay mini application prior to v4.0.14 allows unauthorized... Low Unreviewed
CVE-2021-25332 was published May 24, 2022
Improper access control in Samsung Pay mini application prior to v4.0.14 allows unauthorized... Low Unreviewed
CVE-2021-25333 was published May 24, 2022
Micro Focus Solutions Business Manager Application Repository versions prior to 11.7.1 are... Low Unreviewed
CVE-2019-18947 was published May 24, 2022
Support bundles can include user session IDs in Jenkins Support Core Plugin Low
CVE-2021-21621 was published for org.jenkins-ci.plugins:support-core (Maven) May 24, 2022
NotMyFault Credited to NotMyFault
In certain situations, an attacker with regular user credentials and local access to an ASE... Low Unreviewed
CVE-2020-6317 was published May 24, 2022
Sensitive information could be disclosed in the JetBrains YouTrack application before 2020.2.0... Low Unreviewed
CVE-2020-24366 was published May 24, 2022
IBM Maximo Spatial Asset Management 7.6.0.3, 7.6.0.4, 7.6.0.5, and 7.6.1.0 allows web pages to be... Low Unreviewed
CVE-2020-4650 was published May 24, 2022
Magento information disclosure vulnerability Low
CVE-2020-24406 was published for magento/community-edition (Composer) May 24, 2022
IBM Maximo Anywhere 7.6.2.0, 7.6.2.1, 7.6.3.0, and 7.6.3.1 applications can be installed on a... Low Unreviewed
CVE-2019-4349 was published May 24, 2022
The issue was addressed with improved data deletion. This issue is fixed in iOS 13. Deleted calls... Low Unreviewed
CVE-2019-8732 was published May 24, 2022
Huawei smartphones BLA-A09 versions 8.0.0.123(C212),versions earlier than 8.0.0.123(C567)... Low Unreviewed
CVE-2020-9239 was published May 24, 2022
An information disclosure vulnerability exists when the win32k component improperly provides... Low Unreviewed
CVE-2020-0941 was published May 24, 2022
u'During execution after Address Space Layout Randomization is turned on for QTEE, part of code... Low Unreviewed
CVE-2020-3679 was published May 24, 2022
u'Information can leak into userspace due to improper transfer of data from kernel to userspace'... Low Unreviewed
CVE-2020-3674 was published May 24, 2022
u'Information disclosure issue occurs as in current logic Secure Touch session is released... Low Unreviewed
CVE-2020-3644 was published May 24, 2022
u'Information disclosure issue can occur due to partial secure display-touch session tear-down'... Low Unreviewed
CVE-2020-3643 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database