GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,131
Erlang
29
GitHub Actions
19
Go
1,934
Maven
5,000+
npm
3,671
NuGet
642
pip
3,287
Pub
10
RubyGems
873
Rust
828
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
45 advisories
Filter by severity
An exposure of sensitive information vulnerability exists in the Rockwell Automation FactoryTalk®...
Low
Unreviewed
CVE-2024-6326
was published
Jul 16, 2024
Insecure Permission vulnerability in Agasta Sanketlife 2.0 Pocket 12-Lead ECG Monitor FW Version...
Low
Unreviewed
CVE-2024-32368
was published
Apr 22, 2024
Local privilege escalation due to insecure folder permissions. The following products are...
Low
Unreviewed
CVE-2023-44157
was published
Sep 27, 2023
Improper Knox ID validation logic in notification framework prior to SMR Jun-2023 Release 1...
Low
Unreviewed
CVE-2023-21512
was published
Jun 28, 2023
In sOpAllowSystemRestrictionBypass of AppOpsManager.java, there is a possible leak of location...
Low
Unreviewed
CVE-2022-20240
was published
Dec 13, 2022
In PackageManager, there is a possible way to determine whether an app is installed due to a...
Low
Unreviewed
CVE-2022-20328
was published
Aug 13, 2022
In Telecomm, there is a possible disclosure of registered self managed phone accounts due to a...
Low
Unreviewed
CVE-2022-20311
was published
Aug 13, 2022
In Wi-Fi, there is a possible way to retrieve the WiFi SSID without location permissions due to a...
Low
Unreviewed
CVE-2022-20327
was published
Aug 13, 2022
In ContentService, there is a possible disclosure of available account types due to a missing...
Low
Unreviewed
CVE-2022-20305
was published
Aug 13, 2022
In ActivityManager, there is a possible disclosure of installed packages due to a missing...
Low
Unreviewed
CVE-2022-20315
was published
Aug 13, 2022
In Telecomm, there is a possible disclosure of registered self managed phone accounts due to a...
Low
Unreviewed
CVE-2022-20310
was published
Aug 13, 2022
In LocationManager, there is a possible way to get location information due to a missing...
Low
Unreviewed
CVE-2022-20261
was published
Aug 13, 2022
In bluetooth, there is a possible way to enable or disable bluetooth connection without user...
Low
Unreviewed
CVE-2022-20267
was published
Aug 13, 2022
In various methods of NotificationManagerService.java, there is a possible way to view...
Low
Unreviewed
CVE-2022-20359
was published
Aug 11, 2022
In startSync of AbstractThreadedSyncAdapter.java, there is a possible way to access protected...
Low
Unreviewed
CVE-2022-20358
was published
Aug 11, 2022
Improper use of a unique device ID in unprotected SecSoterService prior to SMR Jul-2022 Release 1...
Low
Unreviewed
CVE-2022-30753
was published
Jul 13, 2022
Trusty TLK contains a vulnerability in its access permission settings where it does not properly...
Low
Unreviewed
CVE-2021-34395
was published
May 24, 2022
A Incorrect Default Permissions vulnerability in the packaging of cups of SUSE Linux Enterprise...
Low
Unreviewed
CVE-2021-25317
was published
May 24, 2022
An improper SELinux policy prior to SMR APR-2021 Release 1 allows local attackers to access AP...
Low
Unreviewed
CVE-2021-25359
was published
May 24, 2022
A vulnerability that stores IMSI values in an improper path prior to SMR APR-2021 Release 1...
Low
Unreviewed
CVE-2021-25358
was published
May 24, 2022
In SELinux policies of mls, there is a missing permission check. This could lead to local...
Low
Unreviewed
CVE-2020-27056
was published
May 24, 2022
In getGpuStatsGlobalInfo and getGpuStatsAppInfo of GpuService.cpp, there is a possible permission...
Low
Unreviewed
CVE-2020-27057
was published
May 24, 2022
In sendConfiguredNetworkChangedBroadcast of WifiConfigManager.java, there is a possible leak of...
Low
Unreviewed
CVE-2020-0459
was published
May 24, 2022
Audacity through 2.3.3 saves temporary files to /var/tmp/audacity-$USER by default. After...
Low
Unreviewed
CVE-2020-11867
was published
May 24, 2022
SAP ERP Client for E-Bilanz, version - 1.0, installation sets Incorrect default filesystem...
Low
Unreviewed
CVE-2020-26807
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API