GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
21
Go
2,003
Maven
5,000+
npm
3,715
NuGet
661
pip
3,387
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
172 advisories
Filter by severity
Insecure inherited permissions in the Intel(R) PROSet/Wireless WiFi software installer for...
High
Unreviewed
CVE-2021-0064
was published
Nov 18, 2021
There is a Improper Preservation of Permissions vulnerability in Huawei Smartphone.Successful...
High
Unreviewed
CVE-2021-37006
was published
Nov 24, 2021
There is a Improper Preservation of Permissions vulnerability in Huawei Smartphone.Successful...
High
Unreviewed
CVE-2021-37086
was published
Dec 8, 2021
There is an Improper permission control vulnerability in Huawei Smartphone.Successful...
Moderate
Unreviewed
CVE-2021-37056
was published
Dec 8, 2021
World-writable permissions on the /tmp/tmate/sessions directory in tmate-ssh-server 2.3.0 allow a...
High
Unreviewed
CVE-2021-44512
was published
Dec 8, 2021
There is a Permission control vulnerability in Huawei Smartphone.Successful exploitation of this...
High
Unreviewed
CVE-2021-37044
was published
Dec 9, 2021
In hasNamedWallpaper of WallpaperManagerService.java, there is a possible way to determine...
Moderate
Unreviewed
CVE-2021-1025
was published
Dec 16, 2021
In getSigningKeySet of PackageManagerService.java, there is a missing permission check. This...
Moderate
Unreviewed
CVE-2021-1010
was published
Dec 16, 2021
In getConfiguredNetworks of WifiServiceImpl.java, there is a possible way to determine whether an...
High
Unreviewed
CVE-2021-1004
was published
Dec 16, 2021
In the broadcast definition in AndroidManifest.xml, there is a possible way to set the A2DP...
High
Unreviewed
CVE-2021-0999
was published
Dec 16, 2021
In onReceive of AlertReceiver.java, there is a possible way to dismiss system dialog due to a...
High
Unreviewed
CVE-2021-0985
was published
Dec 16, 2021
In AndroidManifest.xml of Settings, there is a possible pairing of a Bluetooth device without...
High
Unreviewed
CVE-2021-0965
was published
Dec 16, 2021
In setOnClickActivityIntent of SearchWidgetProvider.java, there is a possible way to access...
High
Unreviewed
CVE-2021-0953
was published
Dec 16, 2021
In requestChannelBrowsable of TvInputManagerService.java, there is a possible permission bypass...
High
Unreviewed
CVE-2021-0927
was published
Dec 16, 2021
In createNoCredentialsPermissionNotification and related functions of AccountManagerService.java,...
Moderate
Unreviewed
CVE-2021-0704
was published
Dec 16, 2021
In enqueueNotification of NetworkPolicyManagerService.java, there is a possible way to retrieve a...
Moderate
Unreviewed
CVE-2021-0653
was published
Dec 16, 2021
Possible access control violation while setting current permission for VMIDs due to improper...
High
Unreviewed
CVE-2021-30279
was published
Jan 4, 2022
In GBoard, there is a possible way to bypass Factory Reset Protection due to a missing permission...
High
Unreviewed
CVE-2021-39622
was published
Jan 15, 2022
Improper permissions in the SafeNet Sentinel driver for Intel(R) Quartus(R) Prime Standard...
High
Unreviewed
CVE-2022-21203
was published
Feb 11, 2022
Plesk CMS 18.0.37 is affected by an insecure permissions vulnerability that allows privilege...
High
Unreviewed
CVE-2021-45008
was published
Feb 22, 2022
Heimdal.Wizard.exe installer in Heimdal Premium Security 2.5.395 and earlier has insecure...
High
Unreviewed
CVE-2022-24618
was published
Mar 11, 2022
In deleteNotificationChannelGroup of NotificationManagerService.java, there is a possible way to...
High
Unreviewed
CVE-2021-39704
was published
Mar 17, 2022
In createOrUpdate of BasePermission.java, there is a possible permission bypass due to a logic...
High
Unreviewed
CVE-2021-39695
was published
Mar 17, 2022
In checkFileUriDestination of DownloadProvider.java, there is a possible way to bypass external...
High
Unreviewed
CVE-2021-39697
was published
Mar 17, 2022
This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.6.5, macOS...
Moderate
Unreviewed
CVE-2022-22650
was published
Mar 19, 2022
ProTip!
Advisories are also available from the
GraphQL API