GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,681
NuGet
650
pip
3,298
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
2,018 advisories
Filter by severity
An issue was discovered in COINS Construction Cloud 11.12. Due to logical flaws in the human...
High
Unreviewed
CVE-2021-45222
was published
Jan 25, 2022
The Dell EMC Virtual Appliances before 9.2.2.2 contain undocumented user accounts. A local...
High
Unreviewed
CVE-2021-36339
was published
Jan 22, 2022
A privilege escalation vulnerability in the McAfee Agent prior to 5.7.5. McAfee Agent uses...
High
Unreviewed
CVE-2022-0166
was published
Jan 20, 2022
CyberArk Endpoint Privilege Manager (EPM) through 11.5.3.328 before 2021-12-20 allows a local...
High
Unreviewed
CVE-2021-44049
was published
Jan 16, 2022
In jit_memory_region.cc, there is a possible bypass of memory restrictions due to a logic error...
High
Unreviewed
CVE-2021-0959
was published
Jan 15, 2022
In sendLegacyVoicemailNotification of LegacyModeSmsHandler.java, there is a possible permissions...
High
Unreviewed
CVE-2021-39621
was published
Jan 15, 2022
In multiple methods of EuiccNotificationManager.java, there is a possible way to install existing...
High
Unreviewed
CVE-2021-39618
was published
Jan 15, 2022
In showCarrierAppInstallationNotification of EuiccNotificationManager.java, there is a possible...
High
Unreviewed
CVE-2021-39625
was published
Jan 15, 2022
In sendLegacyVoicemailNotification of LegacyModeSmsHandler.java, there is a possible permissions...
High
Unreviewed
CVE-2021-39627
was published
Jan 15, 2022
In executeRequest of OverlayManagerService.java, there is a possible way to control fabricated...
High
Unreviewed
CVE-2021-39630
was published
Jan 15, 2022
In <TBD> of <TBD>, there is a possible bypass of Factory Reset Protection due to <TBD>. This...
High
Unreviewed
CVE-2021-39678
was published
Jan 15, 2022
In target_init of gs101/abl/target/slider/target.c, there is a possible allocation of RWX memory...
High
Unreviewed
CVE-2021-39684
was published
Jan 15, 2022
Arm Mali GPU Kernel Driver (Midgard r26p0 through r30p0, Bifrost r0p0 through r34p0, and Valhall...
High
Unreviewed
CVE-2021-44828
was published
Jan 15, 2022
This vulnerability allows local attackers to escalate privileges on affected installations of...
High
Unreviewed
CVE-2021-34998
was published
Jan 14, 2022
The eFTL Server component of TIBCO Software Inc.'s TIBCO eFTL - Community Edition, TIBCO eFTL -...
High
Unreviewed
CVE-2021-43055
was published
Jan 12, 2022
Microsoft Cryptographic Services Elevation of Privilege Vulnerability.
High
Unreviewed
CVE-2022-21835
was published
Jan 12, 2022
Windows User-mode Driver Framework Reflector Driver Elevation of Privilege Vulnerability.
High
Unreviewed
CVE-2022-21834
was published
Jan 12, 2022
Virtual Machine IDE Drive Elevation of Privilege Vulnerability.
High
Unreviewed
CVE-2022-21833
was published
Jan 12, 2022
Windows DWM Core Library Elevation of Privilege Vulnerability. This CVE ID is unique from CVE...
High
Unreviewed
CVE-2022-21852
was published
Jan 12, 2022
Active Directory Domain Services Elevation of Privilege Vulnerability.
High
Unreviewed
CVE-2022-21857
was published
Jan 12, 2022
Windows Bind Filter Driver Elevation of Privilege Vulnerability.
High
Unreviewed
CVE-2022-21858
was published
Jan 12, 2022
Windows Accounts Control Elevation of Privilege Vulnerability.
High
Unreviewed
CVE-2022-21859
was published
Jan 12, 2022
Windows AppContracts API Server Elevation of Privilege Vulnerability.
High
Unreviewed
CVE-2022-21860
was published
Jan 12, 2022
Windows StateRepository API Server file Elevation of Privilege Vulnerability.
High
Unreviewed
CVE-2022-21863
was published
Jan 12, 2022
Task Flow Data Engine Elevation of Privilege Vulnerability.
High
Unreviewed
CVE-2022-21861
was published
Jan 12, 2022
ProTip!
Advisories are also available from the
GraphQL API