GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
985 advisories
Filter by severity
A bug in CmpUserMgr component can lead to only partially applied security policies. This can...
Moderate
Unreviewed
CVE-2022-22518
was published
Apr 8, 2022
In createBluetoothDeviceSlice of ConnectedDevicesSliceProvider.java, there is a possible...
High
Unreviewed
CVE-2021-1000
was published
Mar 31, 2022
In createGeneralSlice of ConnectedDevicesSliceProvider.java.java, there is a possible permission...
High
Unreviewed
CVE-2021-1033
was published
Mar 31, 2022
In InputMethodEditor, there is a possible way to access some files accessible to Settings due to...
Moderate
Unreviewed
CVE-2021-39748
was published
Mar 31, 2022
In Settings Provider, there is a possible way to list values of non-readable global settings due...
Moderate
Unreviewed
CVE-2021-39747
was published
Mar 31, 2022
In Framework, there is a possible disclosure of the device owner package due to a missing...
Moderate
Unreviewed
CVE-2021-39770
was published
Mar 31, 2022
In Device Policy, there is a possible way to determine whether an app is installed, without query...
Moderate
Unreviewed
CVE-2021-39769
was published
Mar 31, 2022
In getCallStateUsingPackage of Telecom Service, there is a missing permission check. This could...
Moderate
Unreviewed
CVE-2021-39779
was published
Mar 31, 2022
In Traceur, there is a possible bypass of developer settings requirements for capturing system...
High
Unreviewed
CVE-2021-39780
was published
Mar 31, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) is vulnerable to an incorrect...
High
Unreviewed
CVE-2022-26839
was published
Mar 30, 2022
The vCenter Server contains an information disclosure vulnerability due to improper permission of...
Moderate
Unreviewed
CVE-2022-22948
was published
Mar 30, 2022
The web management console of CheckMK Raw Edition (versions 1.5.0 to 1.6.0) allows a...
High
Unreviewed
CVE-2021-40904
was published
Mar 27, 2022
A vulnerability affecting F-Secure SAFE browser was discovered. A maliciously crafted website...
Moderate
Unreviewed
CVE-2021-44751
was published
Mar 26, 2022
Incorrect permissions in the Bluetooth Services in the Fortessa FTBTLD Smart Lock as of 12-13...
High
Unreviewed
CVE-2021-44905
was published
Mar 26, 2022
In Click Studios (SA) Pty Ltd Passwordstate 9435, users with access to a passwordlist can gain...
Moderate
Unreviewed
CVE-2022-25570
was published
Mar 22, 2022
A local attacker could read files from some other users' SA360 reports stored in the /tmp folder...
Moderate
Unreviewed
CVE-2021-22571
was published
Mar 19, 2022
In getNotificationTag of LegacyVoicemailNotifier.java, there is a possible leak of ICCID due to a...
Moderate
Unreviewed
CVE-2021-39705
was published
Mar 17, 2022
In parse of RoleParser.java, there is a possible way for default apps to get permissions...
High
Unreviewed
CVE-2021-39694
was published
Mar 17, 2022
In onResume of CredentialStorage.java, there is a possible way to cleanup content of credentials...
High
Unreviewed
CVE-2021-39706
was published
Mar 17, 2022
In sendMessage of OneToOneChatImpl.java (? TBD), there is a possible way to send an RCS message...
High
Unreviewed
CVE-2021-39734
was published
Mar 17, 2022
This issue affects: Secomea GateManager Version 9.6.621421014 and all prior versions. Permission...
Moderate
Unreviewed
CVE-2021-32006
was published
Mar 11, 2022
A flaw was found in the permissions of a log file created by kexec-tools. This flaw allows a...
Moderate
Unreviewed
CVE-2021-20269
was published
Mar 11, 2022
A flaw in grub2 was found where its configuration file, known as grub.cfg, is being created with...
Low
Unreviewed
CVE-2021-3981
was published
Mar 11, 2022
There is a permission control vulnerability in the PMS module. Successful exploitation of this...
High
Unreviewed
CVE-2021-40049
was published
Mar 11, 2022
There is a permission control vulnerability in the Wi-Fi module. Successful exploitation of this...
Moderate
Unreviewed
CVE-2021-40059
was published
Mar 11, 2022
ProTip!
Advisories are also available from the
GraphQL API