Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,354
Erlang
31
GitHub Actions
22
Go
2,120
Maven
5,000+
npm
3,779
NuGet
681
pip
3,460
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

841 advisories

Loading
Storage Spaces Controller Information Disclosure Vulnerability This CVE ID is unique from CVE... Moderate Unreviewed
CVE-2021-43227 was published Dec 16, 2021
Storage Spaces Controller Information Disclosure Vulnerability This CVE ID is unique from CVE... Moderate Unreviewed
CVE-2021-43235 was published Dec 16, 2021
Microsoft Defender for IoT Information Disclosure Vulnerability High Unreviewed
CVE-2021-43888 was published Dec 16, 2021
In code generated by BuildParcelFields of generate_cpp.cpp, there is a possible way for a crafted... Moderate Unreviewed
CVE-2021-0966 was published Dec 16, 2021
In getSerialForPackage of DeviceIdentifiersPolicyService.java, there is a possible way to... Low Unreviewed
CVE-2021-0978 was published Dec 16, 2021
In getOrganizationNameForUser of DevicePolicyManagerService.java, there is a possible... Low Unreviewed
CVE-2021-0982 was published Dec 16, 2021
In hasGrantedPolicy of DevicePolicyManagerService.java, there is a possible information... Moderate Unreviewed
CVE-2021-0986 was published Dec 16, 2021
In requestRouteToHostAddress of ConnectivityService.java, there is a possible way to determine... Low Unreviewed
CVE-2021-0994 was published Dec 16, 2021
Product: AndroidVersions: Android kernelAndroid ID: A-195580473References: N/A High Unreviewed
CVE-2021-1045 was published Dec 16, 2021
Product: AndroidVersions: Android kernelAndroid ID: A-201537251References: N/A High Unreviewed
CVE-2021-39646 was published Dec 16, 2021
In gadget_dev_desc_UDC_show of configfs.c, there is a possible disclosure of kernel heap memory... Moderate Unreviewed
CVE-2021-39648 was published Dec 16, 2021
A vulnerability has been identified in SiPass integrated V2.76 (All versions), SiPass integrated... Critical Unreviewed
CVE-2021-44523 was published Dec 15, 2021
A vulnerability has been identified in SiPass integrated V2.76 (All versions), SiPass integrated... Critical Unreviewed
CVE-2021-44524 was published Dec 15, 2021
A vulnerability has been identified in SiPass integrated V2.76 (All versions), SiPass integrated... High Unreviewed
CVE-2021-44522 was published Dec 15, 2021
An issue was discovered in Listary through 6. An attacker can create a \\.\pipe\Listary... High Unreviewed
CVE-2021-41065 was published Dec 15, 2021
Improper access control in the GraphQL API in GitLab CE/EE affecting all versions starting from... Moderate Unreviewed
CVE-2021-39915 was published Dec 14, 2021
IBM Db2 9.7, 10.1, 10.5, 11.1, and 11.5 may be vulnerable to an Information Disclosure when using... High Unreviewed
CVE-2021-20373 was published Dec 10, 2021
IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.1, and 11.5 is vulnerable to... Moderate Unreviewed
CVE-2021-38931 was published Dec 10, 2021
An improper usage of implicit intent in SemRewardManager prior to SMR Dec-2021 Release 1 allows... Low Unreviewed
CVE-2021-25515 was published Dec 9, 2021
Microsoft introduced a new feature in Windows 10 known as Cloud Clipboard which, if enabled, will... Moderate Unreviewed
CVE-2021-38505 was published Dec 9, 2021
Under certain circumstances, asynchronous functions could have caused a navigation to fail but... Moderate Unreviewed
CVE-2021-43536 was published Dec 9, 2021
An information disclosure vulnerability in the ArcGIS Service Directory in Esri ArcGIS Enterprise... Moderate Unreviewed
CVE-2021-29115 was published Dec 8, 2021
A denial-of-service attack in WPA2, and WPA3-SAE authentication methods in TP-Link AX10v1 before... High Unreviewed
CVE-2021-40288 was published Dec 8, 2021
An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. The Samba file... Moderate Unreviewed
CVE-2021-43039 was published Dec 7, 2021
An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. The apache user could... Moderate Unreviewed
CVE-2021-43043 was published Dec 7, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database