Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,681
NuGet
650
pip
3,298
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,018 advisories

Loading
An issue was discovered in COINS Construction Cloud 11.12. Due to logical flaws in the human... High Unreviewed
CVE-2021-45222 was published Jan 25, 2022
The Dell EMC Virtual Appliances before 9.2.2.2 contain undocumented user accounts. A local... High Unreviewed
CVE-2021-36339 was published Jan 22, 2022
A privilege escalation vulnerability in the McAfee Agent prior to 5.7.5. McAfee Agent uses... High Unreviewed
CVE-2022-0166 was published Jan 20, 2022
CyberArk Endpoint Privilege Manager (EPM) through 11.5.3.328 before 2021-12-20 allows a local... High Unreviewed
CVE-2021-44049 was published Jan 16, 2022
In jit_memory_region.cc, there is a possible bypass of memory restrictions due to a logic error... High Unreviewed
CVE-2021-0959 was published Jan 15, 2022
In sendLegacyVoicemailNotification of LegacyModeSmsHandler.java, there is a possible permissions... High Unreviewed
CVE-2021-39621 was published Jan 15, 2022
In multiple methods of EuiccNotificationManager.java, there is a possible way to install existing... High Unreviewed
CVE-2021-39618 was published Jan 15, 2022
In showCarrierAppInstallationNotification of EuiccNotificationManager.java, there is a possible... High Unreviewed
CVE-2021-39625 was published Jan 15, 2022
In sendLegacyVoicemailNotification of LegacyModeSmsHandler.java, there is a possible permissions... High Unreviewed
CVE-2021-39627 was published Jan 15, 2022
In executeRequest of OverlayManagerService.java, there is a possible way to control fabricated... High Unreviewed
CVE-2021-39630 was published Jan 15, 2022
In <TBD> of <TBD>, there is a possible bypass of Factory Reset Protection due to <TBD>. This... High Unreviewed
CVE-2021-39678 was published Jan 15, 2022
In target_init of gs101/abl/target/slider/target.c, there is a possible allocation of RWX memory... High Unreviewed
CVE-2021-39684 was published Jan 15, 2022
Arm Mali GPU Kernel Driver (Midgard r26p0 through r30p0, Bifrost r0p0 through r34p0, and Valhall... High Unreviewed
CVE-2021-44828 was published Jan 15, 2022
This vulnerability allows local attackers to escalate privileges on affected installations of... High Unreviewed
CVE-2021-34998 was published Jan 14, 2022
The eFTL Server component of TIBCO Software Inc.'s TIBCO eFTL - Community Edition, TIBCO eFTL -... High Unreviewed
CVE-2021-43055 was published Jan 12, 2022
Microsoft Cryptographic Services Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-21835 was published Jan 12, 2022
Windows User-mode Driver Framework Reflector Driver Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-21834 was published Jan 12, 2022
Virtual Machine IDE Drive Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-21833 was published Jan 12, 2022
Windows DWM Core Library Elevation of Privilege Vulnerability. This CVE ID is unique from CVE... High Unreviewed
CVE-2022-21852 was published Jan 12, 2022
Active Directory Domain Services Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-21857 was published Jan 12, 2022
Windows Bind Filter Driver Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-21858 was published Jan 12, 2022
Windows Accounts Control Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-21859 was published Jan 12, 2022
Windows AppContracts API Server Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-21860 was published Jan 12, 2022
Windows StateRepository API Server file Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-21863 was published Jan 12, 2022
Task Flow Data Engine Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-21861 was published Jan 12, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database