GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,987
Maven
5,000+
npm
3,704
NuGet
661
pip
3,330
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
71 advisories
Filter by severity
Context isolation bypass in Electron
Low
CVE-2020-15215
was published
for
electron
(npm)
Oct 6, 2020
An issue with app access to camera metadata was addressed with improved logic. This issue is...
Low
Unreviewed
CVE-2022-22598
was published
Mar 19, 2022
In getOrganizationNameForUser of DevicePolicyManagerService.java, there is a possible...
Low
Unreviewed
CVE-2021-0982
was published
Dec 16, 2021
In requestRouteToHostAddress of ConnectivityService.java, there is a possible way to determine...
Low
Unreviewed
CVE-2021-0994
was published
Dec 16, 2021
A business logic error in Project Import in GitLab CE/EE versions 14.9 prior to 14.9.2, 14.8...
Low
Unreviewed
CVE-2022-1111
was published
Apr 5, 2022
Improper access control vulnerability in SamsungContacts prior to SMR Apr-2022 Release 1 allows...
Low
Unreviewed
CVE-2022-26090
was published
Apr 12, 2022
Exposure of Resource to Wrong Sphere in Simple-Wayland-HotKey-Daemon
Low
CVE-2022-27814
was published
for
Simple-Wayland-HotKey-Daemon
(Rust)
Apr 15, 2022
An improper usage of implicit intent in SemRewardManager prior to SMR Dec-2021 Release 1 allows...
Low
Unreviewed
CVE-2021-25515
was published
Dec 9, 2021
A lock screen issue allowed access to contacts on a locked device. This issue was addressed with...
Low
Unreviewed
CVE-2021-30815
was published
May 24, 2022
Sensitive information exposure in low-battery dumpstate log prior to SMR Jun-2022 Release 1...
Low
Unreviewed
CVE-2022-28794
was published
Jun 8, 2022
Azure RTOS Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-26444, CVE...
Low
Unreviewed
CVE-2021-42323
was published
May 24, 2022
The issue was addressed with improved permissions logic. This issue is fixed in iOS 15 and iPadOS...
Low
Unreviewed
CVE-2021-30816
was published
May 24, 2022
Information exposure vulnerability in SemIWCMonitor prior to SMR Jun-2022 Release 1 allows local...
Low
Unreviewed
CVE-2022-30714
was published
Jun 8, 2022
An issue was discovered in PrimeKey EJBCA before 7.6.0. As part of the configuration of the...
Low
Unreviewed
CVE-2021-40086
was published
May 24, 2022
Information exposure vulnerability in ScanPool prior to SMR Jun-2022 Release 1 allows local...
Low
Unreviewed
CVE-2022-30728
was published
Jun 8, 2022
Compromised child renderer processes could obtain IPC access without nodeIntegrationInSubFrames being enabled
Low
CVE-2022-29247
was published
for
electron
(npm)
Jun 16, 2022
Exposure of Sensitive Information in getDsaSimImsi in TelephonyUI prior to SMR Jul-2022 Release 1...
Low
Unreviewed
CVE-2022-33699
was published
Jul 13, 2022
IBM Jazz Team Server 6.0.6, 6.0.6.1, 7.0, 7.0.1, and 7.0.2 allows web pages to be stored locally...
Low
Unreviewed
CVE-2021-20551
was published
Jun 25, 2022
Exposure of Sensitive Information in CSC application prior to SMR Jul-2022 Release 1 allows local...
Low
Unreviewed
CVE-2022-33694
was published
Jul 13, 2022
Exposure of Sensitive Information in Messaging application prior to SMR Jul-2022 Release 1 allows...
Low
Unreviewed
CVE-2022-33692
was published
Jul 13, 2022
Exposure of Sensitive Information in putDsaSimImsi in TelephonyUI prior to SMR Jul-2022 Release 1...
Low
Unreviewed
CVE-2022-33700
was published
Jul 13, 2022
Exposure of Sensitive Information in Telephony service prior to SMR Jul-2022 Release 1 allows...
Low
Unreviewed
CVE-2022-33696
was published
Jul 13, 2022
Exposure of Sensitive Information in Telecom application prior to SMR Jul-2022 Release 1 allows...
Low
Unreviewed
CVE-2022-33698
was published
Jul 13, 2022
In various functions of ap_input_processor.c, there is a possible way to record audio during a...
Low
Unreviewed
CVE-2022-20562
was published
Dec 21, 2022
In multiple locations of WifiDialogActivity.java, there is a possible limited lockscreen bypass...
Low
Unreviewed
CVE-2022-20529
was published
Dec 20, 2022
ProTip!
Advisories are also available from the
GraphQL API