Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,046 advisories

Loading
In Phoenix Contact FL SWITCH Series 2xxx in version 3.00 an incorrect privilege assignment allows... High Unreviewed
CVE-2022-22509 was published Feb 3, 2022
There is a privilege escalation vulnerability in some webOS TVs. Due to wrong setting... High Unreviewed
CVE-2022-23727 was published Jan 29, 2022
In QuickBox Pro v2.5.8 and below, the config.php file has a variable which takes a GET parameter... High Unreviewed
CVE-2021-44981 was published Jan 25, 2022
An issue was discovered in COINS Construction Cloud 11.12. Due to logical flaws in the human... High Unreviewed
CVE-2021-45222 was published Jan 25, 2022
The Dell EMC Virtual Appliances before 9.2.2.2 contain undocumented user accounts. A local... High Unreviewed
CVE-2021-36339 was published Jan 22, 2022
A privilege escalation vulnerability in the McAfee Agent prior to 5.7.5. McAfee Agent uses... High Unreviewed
CVE-2022-0166 was published Jan 20, 2022
CyberArk Endpoint Privilege Manager (EPM) through 11.5.3.328 before 2021-12-20 allows a local... High Unreviewed
CVE-2021-44049 was published Jan 16, 2022
In jit_memory_region.cc, there is a possible bypass of memory restrictions due to a logic error... High Unreviewed
CVE-2021-0959 was published Jan 15, 2022
In multiple methods of EuiccNotificationManager.java, there is a possible way to install existing... High Unreviewed
CVE-2021-39618 was published Jan 15, 2022
In sendLegacyVoicemailNotification of LegacyModeSmsHandler.java, there is a possible permissions... High Unreviewed
CVE-2021-39621 was published Jan 15, 2022
In showCarrierAppInstallationNotification of EuiccNotificationManager.java, there is a possible... High Unreviewed
CVE-2021-39625 was published Jan 15, 2022
In sendLegacyVoicemailNotification of LegacyModeSmsHandler.java, there is a possible permissions... High Unreviewed
CVE-2021-39627 was published Jan 15, 2022
In executeRequest of OverlayManagerService.java, there is a possible way to control fabricated... High Unreviewed
CVE-2021-39630 was published Jan 15, 2022
In <TBD> of <TBD>, there is a possible bypass of Factory Reset Protection due to <TBD>. This... High Unreviewed
CVE-2021-39678 was published Jan 15, 2022
In target_init of gs101/abl/target/slider/target.c, there is a possible allocation of RWX memory... High Unreviewed
CVE-2021-39684 was published Jan 15, 2022
Arm Mali GPU Kernel Driver (Midgard r26p0 through r30p0, Bifrost r0p0 through r34p0, and Valhall... High Unreviewed
CVE-2021-44828 was published Jan 15, 2022
This vulnerability allows local attackers to escalate privileges on affected installations of... High Unreviewed
CVE-2021-34998 was published Jan 14, 2022
The eFTL Server component of TIBCO Software Inc.'s TIBCO eFTL - Community Edition, TIBCO eFTL -... High Unreviewed
CVE-2021-43055 was published Jan 12, 2022
Windows User-mode Driver Framework Reflector Driver Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-21834 was published Jan 12, 2022
Microsoft Cryptographic Services Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-21835 was published Jan 12, 2022
Virtual Machine IDE Drive Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-21833 was published Jan 12, 2022
Windows DWM Core Library Elevation of Privilege Vulnerability. This CVE ID is unique from CVE... High Unreviewed
CVE-2022-21852 was published Jan 12, 2022
Windows Bind Filter Driver Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-21858 was published Jan 12, 2022
Active Directory Domain Services Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-21857 was published Jan 12, 2022
Windows Accounts Control Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-21859 was published Jan 12, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database