Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,300
Erlang
31
GitHub Actions
21
Go
2,069
Maven
5,000+
npm
3,744
NuGet
668
pip
3,429
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+

291 advisories

Loading
BeyondTrust Privilege Management prior to version 21.6 creates a Temporary File in a Directory... High Unreviewed
CVE-2021-42254 was published May 24, 2022
Possible information exposure and denial of service due to NAS not dropping messages when... High Unreviewed
CVE-2021-30284 was published May 24, 2022
In JetBrains TeamCity before 2021.1, information disclosure via the Docker Registry connection... High Unreviewed
CVE-2021-43196 was published May 24, 2022
There is an Unauthorized file access vulnerability in Huawei Smartphone.Successful exploitation... High Unreviewed
CVE-2021-22488 was published May 24, 2022
Exposure of Resource to Wrong Sphere in Spring Cloud OpenFeign High
CVE-2021-22044 was published for org.springframework.cloud:spring-cloud-openfeign-core (Maven) May 24, 2022
An issue was discovered in Hyland org.alfresco:alfresco-content-services through 7.0.1.2. Script... High Unreviewed
CVE-2021-41790 was published May 24, 2022
IBM Flash System 900 could allow an authenticated attacker to obtain sensitive information and... High Unreviewed
CVE-2021-29873 was published May 24, 2022
Releases prior to VMware vRealize Operations Tenant App 8.6 contain an Information Disclosure... High Unreviewed
CVE-2021-22034 was published May 24, 2022
Accepting AMSDU frames with mismatched destination and source address can lead to information... High Unreviewed
CVE-2020-11303 was published May 24, 2022
An access issue was addressed with improved access restrictions. This issue is fixed in Security... High Unreviewed
CVE-2021-30850 was published May 24, 2022
A local file inclusion vulnerability exists in Draytek VigorConnect 1.6.0-B3 in the file download... High Unreviewed
CVE-2021-20123 was published May 24, 2022
A local file inclusion vulnerability exists in Draytek VigorConnect 1.6.0-B3 in the file download... High Unreviewed
CVE-2021-20124 was published May 24, 2022
Arbitrary file deletion vulnerability was discovered in wuzhicms v 4.0.1 via coreframe\app... High Unreviewed
CVE-2020-28145 was published May 24, 2022
waimai Super Cms 20150505 has a logic flaw allowing attackers to modify a price, before form... High Unreviewed
CVE-2020-21503 was published May 24, 2022
An issue was discovered in 3xLogic Infinias Access Control through 6.7.10708.0, affecting... High Unreviewed
CVE-2021-41847 was published May 24, 2022
The vCenter Server contains an information disclosure vulnerability due to an unauthenticated... High Unreviewed
CVE-2021-22012 was published May 24, 2022
The vCenter Server contains an information disclosure vulnerability in VAPI (vCenter API) service... High Unreviewed
CVE-2021-22008 was published May 24, 2022
LINE client for iOS before 11.15.0 might expose authentication information for a certain service... High Unreviewed
CVE-2021-41011 was published May 24, 2022
Improper Access Control in Jfinal CMS v4.7.1 and earlier allows remote attackers to obtain... High Unreviewed
CVE-2020-19155 was published May 24, 2022
HashiCorp Terraform Enterprise up to v202108-1 contained an API endpoint that erroneously... High Unreviewed
CVE-2021-40862 was published May 24, 2022
On BIG-IP version 16.x before 16.1.0 and 15.1.x before 15.1.3.1, when a DNS profile using a DNS... High Unreviewed
CVE-2021-23034 was published May 24, 2022
A logic issue was addressed with improved state management. This issue is fixed in iOS 14.7,... High Unreviewed
CVE-2021-30798 was published May 24, 2022
An access issue was addressed with improved memory management. This issue is fixed in iOS 14.5... High Unreviewed
CVE-2021-30656 was published May 24, 2022
An issue was discovered in Mbed TLS before 2.24.0 (and before 2.16.8 LTS and before 2.7.17 LTS).... High Unreviewed
CVE-2020-36476 was published May 24, 2022
OneNav 0.9.12 allows Information Disclosure of the onenav.db3 contents. NOTE: the vendor's... High Unreviewed
CVE-2021-38712 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database