GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,135
Composer 4,081
Erlang 29
GitHub Actions 19
Go 1,909
Maven 5,106
npm 3,642
NuGet 638
pip 3,258
Pub 10
RubyGems 869
Rust 820
Swift 35

Unreviewed advisories

All unreviewed 228,998

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

965 advisories

Filter by severity

Sort by

Least recently updated

Redmine before 4.0.9, 4.1.x before 4.1.3, and 4.2.x before 4.2.1 allows users to circumvent the... Moderate Unreviewed

CVE-2021-31865 was published May 24, 2022

Improper access control vulnerability in Hot Pepper Gourmet App for Android ver.4.111.0 and... Moderate Unreviewed

CVE-2021-20715 was published May 24, 2022

IBM Cognos Analytics 10.0 and 11.1 is susceptible to a weakness in the implementation of the... Moderate Unreviewed

CVE-2021-20461 was published May 24, 2022

IOMMU page mapping issues on x86 T[his CNA information record relates to multiple CVEs; the text... Moderate Unreviewed

CVE-2021-28696 was published May 24, 2022

An improper access control vulnerability in Worry-Free Business Security 10.0 SP1 could allow an... Moderate Unreviewed

CVE-2021-25245 was published May 24, 2022

Incorrect Authorization in MySQL Connector Java Moderate

CVE-2021-2471 was published for mysql:mysql-connector-java (Maven) May 24, 2022

Improper access control in NotificationManagerService in Samsung mobile devices prior to SMR Mar... Moderate Unreviewed

CVE-2021-25336 was published May 24, 2022

Improper access control vulnerability in Cameralyzer prior to versions 3.2.1041 in 3.2.x, 3.3... Moderate Unreviewed

CVE-2021-25431 was published May 24, 2022

Insufficient policy enforcement in image handling in iOS in Google Chrome on iOS prior to 92.0... Moderate Unreviewed

CVE-2021-30583 was published May 24, 2022

IBM Cloud Pak for Security (CP4S) 1.5.0.0, 1.5.1.0, 1.6.0.0, 1.6.1.0, 1.7.0.0, and 1.7.1.0 could... Moderate Unreviewed

CVE-2021-20541 was published May 24, 2022

An issue has been discovered in GitLab affecting all versions starting from 13.4. Improper access... Moderate Unreviewed

CVE-2021-22180 was published May 24, 2022

An issue was discovered in Cleo LexiCom 5.5.0.0. The requirement for the sender of an AS2 message... Moderate Unreviewed

CVE-2021-33577 was published May 24, 2022

This issue was addressed with improved checks. This issue is fixed in Security Update 2022-003... Moderate Unreviewed

CVE-2022-22616 was published May 27, 2022

A vulnerability in Cisco Connected Mobile Experiences (CMX) API authorizations could allow an... Moderate Unreviewed

CVE-2021-1143 was published May 24, 2022

IBM UrbanCode Deploy (UCD) 6.2.7.9, 7.0.5.4, and 7.1.1.1 could allow an authenticated user to... Moderate Unreviewed

CVE-2020-4848 was published May 24, 2022

In FreeBSD 12.2-STABLE before r369346, 11.4-STABLE before r369345, 12.2-RELEASE before p4 and 11... Moderate Unreviewed

CVE-2020-25580 was published May 24, 2022

Incorrect authorization in GitLab EE affecting all versions from 12.0 before 14.9.5, all versions... Moderate Unreviewed

CVE-2022-1935 was published Jun 7, 2022

Improper authorization vulnerability in Tizen factory reset policy prior to Firmware update JUL... Moderate Unreviewed

CVE-2021-25433 was published May 24, 2022

A remote disclosure of sensitive information vulnerability was discovered in Aruba ClearPass... Moderate Unreviewed

CVE-2021-29141 was published May 24, 2022

A remote disclosure of sensitive information vulnerability was discovered in Aruba ClearPass... Moderate Unreviewed

CVE-2021-29144 was published May 24, 2022

IBM Cloud Pak for Security (CP4S) 1.5.0.0, 1.5.1.0, 1.6.0.0, 1.6.1.0, 1.7.0.0, and 1.7.1.0 could... Moderate Unreviewed

CVE-2021-20539 was published May 24, 2022

NVIDIA camera firmware contains a vulnerability where an unauthorized modification by camera... Moderate Unreviewed

CVE-2021-1113 was published May 24, 2022

 Improper access control in system firmware for some Intel(R) NUCs may allow a privileged... Moderate Unreviewed

CVE-2021-0067 was published May 24, 2022

Insufficient policy enforcement in Content Security Policy in Google Chrome prior to 91.0.4472.77... Moderate Unreviewed

CVE-2021-30532 was published May 24, 2022

IBM Cloud Pak for Security (CP4S) 1.5.0.0, 1.5.1.0, 1.6.0.0, 1.6.1.0, 1.7.0.0, and 1.7.1.0 could... Moderate Unreviewed

CVE-2021-20540 was published May 24, 2022

Previous 1 2 3 4 5 6 7 … 38 39 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

965 advisories