Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,350
Erlang
31
GitHub Actions
22
Go
2,119
Maven
5,000+
npm
3,778
NuGet
680
pip
3,459
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+

423 advisories

Loading
An elevation of privilege vulnerability exists in the way the Task Scheduler Service validates... High Unreviewed
CVE-2019-1069 was published May 24, 2022
deepin-clone before 1.1.3 uses a predictable path /tmp/.deepin-clone/mount/<block-dev-basename>... High Unreviewed
CVE-2019-13226 was published May 24, 2022
An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC)... High Unreviewed
CVE-2019-1129 was published May 24, 2022
An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC)... High Unreviewed
CVE-2019-1130 was published May 24, 2022
UploaderService in SnagIT 2019.1.2 allows elevation of privilege by placing an invalid... High Unreviewed
CVE-2019-13382 was published May 24, 2022
An issue was discovered in Avira Free Security Suite 10. The permissive access rights on the... High Unreviewed
CVE-2019-11396 was published May 24, 2022
A vulnerability in the filesystem of Cisco IOS XE Software could allow an authenticated, local... High Unreviewed
CVE-2019-12672 was published May 24, 2022
An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly... High Unreviewed
CVE-2019-1315 was published May 24, 2022
A denial of service vulnerability exists when Windows improperly handles hard links, aka ... High Unreviewed
CVE-2019-1317 was published May 24, 2022
An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly... High Unreviewed
CVE-2019-1339 was published May 24, 2022
It was found that rpm did not properly handle RPM installations when a destination path was a... High Unreviewed
CVE-2017-7500 was published May 24, 2022
An elevation of privilege vulnerability exists when the Windows AppX Deployment Server improperly... High Unreviewed
CVE-2019-1483 was published May 24, 2022
Avira Antivirus before 5.0.2003.1821 on Windows allows privilege escalation or a denial of... High Unreviewed
CVE-2020-12254 was published May 24, 2022
Mumble before 1.3.4 allows remote code execution if a victim navigates to a crafted URL on a... High Unreviewed
CVE-2021-27229 was published May 24, 2022
OpenVPN Connect installer for macOS version 3.2.6 and older may corrupt system critical files it... High Unreviewed
CVE-2020-15075 was published May 24, 2022
An elevation of privilege vulnerability exists when the Windows AppX Deployment Extensions... High Unreviewed
CVE-2019-1385 was published May 24, 2022
Symlink Traversal vulnerability in Belkin N900 due to misconfiguration in the SMB service. High Unreviewed
CVE-2013-4655 was published May 24, 2022
The SolarWinds Platform was susceptible to the Local Privilege Escalation Vulnerability. This... High Unreviewed
CVE-2022-47505 was published Apr 21, 2023
Docker Desktop before 4.6.0 on Windows allows attackers to delete any file through the hyperv... High Unreviewed
CVE-2022-31647 was published Apr 27, 2023
Docker Desktop for Windows before 4.6.0 allows attackers to overwrite any file through a symlink... High Unreviewed
CVE-2022-34292 was published Apr 27, 2023
Wacom Tablet Driver installer prior to 6.4.2-1 (for macOS) contains an improper link resolution... High Unreviewed
CVE-2023-27529 was published May 25, 2023
Minecraft through 1.19 and 1.20 pre-releases before 7 (Java) allow arbitrary file overwrite, and... High Unreviewed
CVE-2023-33245 was published May 30, 2023
Dell Command | Update, Dell Update, and Alienware Update versions 4.8.0 and prior contain an... High Unreviewed
CVE-2023-28065 was published Jun 23, 2023
Dell Command | Update, Dell Update, and Alienware Update versions 4.9.0, A01 and prior contain... High Unreviewed
CVE-2023-28071 was published Jun 23, 2023
UnRAR before 6.2.3 allows extraction of files outside of the destination folder via symlink chains. High Unreviewed
CVE-2022-48579 was published Aug 7, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database