Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,335
Erlang
31
GitHub Actions
22
Go
2,096
Maven
5,000+
npm
3,762
NuGet
678
pip
3,448
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

419 advisories

Loading
In WIBU CodeMeter Runtime before 7.30a, creating a crafted CmDongles symbolic link will overwrite... High Unreviewed
CVE-2021-41057 was published May 24, 2022
Windows Installer Elevation of Privilege Vulnerability High Unreviewed
CVE-2021-41379 was published May 24, 2022
Dell SupportAssist Client Consumer versions 3.9.13.0 and any versions prior to 3.9.13.0 contain... High Unreviewed
CVE-2021-36286 was published May 24, 2022
A vulnerability in the Cisco IOS XE SD-WAN Software CLI could allow an authenticated, local... High Unreviewed
CVE-2021-1612 was published May 24, 2022
Improper privileges management vulnerability in McAfee Endpoint Security (ENS) Windows prior to... High Unreviewed
CVE-2021-31843 was published May 24, 2022
squashfs_opendir in unsquash-2.c in Squashfs-Tools 4.5 allows Directory Traversal, a different... High Unreviewed
CVE-2021-41072 was published May 24, 2022
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability This CVE ID is unique from... High Unreviewed
CVE-2021-36928 was published May 24, 2022
Windows Event Tracing Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021... High Unreviewed
CVE-2021-26425 was published May 24, 2022
Windows User Account Profile Picture Elevation of Privilege Vulnerability High Unreviewed
CVE-2021-26426 was published May 24, 2022
replay-sorcery-kms in Replay Sorcery 0.6.0 allows a local attacker to gain root privileges via a... High Unreviewed
CVE-2021-36983 was published May 24, 2022
A UNIX Symbolic Link (Symlink) Following vulnerability in the clone-master-clean-up.sh script of... High Unreviewed
CVE-2021-32000 was published May 24, 2022
NVIDIA GPU Display driver for Windows contains a vulnerability where an unprivileged user can... High Unreviewed
CVE-2021-1091 was published May 24, 2022
An improper symlink following in FortiClient for Mac 6.4.3 and below may allow an non-privileged... High Unreviewed
CVE-2021-26089 was published May 24, 2022
A vulnerability in share_link in QSAN Storage Manager allows remote attackers to create a... High Unreviewed
CVE-2021-32518 was published May 24, 2022
A UNIX Symbolic Link (Symlink) Following vulnerability in arpwatch of SUSE Linux Enterprise... High Unreviewed
CVE-2021-25321 was published May 24, 2022
It was discovered that the process_report() function in data/whoopsie-upload-all allowed... High Unreviewed
CVE-2021-32557 was published May 24, 2022
A UNIX Symbolic Link (Symlink) Following vulnerability in python-HyperKitty of openSUSE Leap 15.2... High Unreviewed
CVE-2021-25322 was published May 24, 2022
a UNIX Symbolic Link (Symlink) Following vulnerability in python-postorius of openSUSE Leap 15.2,... High Unreviewed
CVE-2021-31997 was published May 24, 2022
Improper link resolution before file access in Intel(R) DSA before version 20.11.50.9 may allow... High Unreviewed
CVE-2021-0094 was published May 24, 2022
Private Tunnel installer for macOS version 3.0.1 and older versions may corrupt system critical... High Unreviewed
CVE-2020-15076 was published May 24, 2022
A Zip Slip vulnerability was found in the oc binary in openshift-clients where an arbitrary file... High Unreviewed
CVE-2020-27833 was published May 24, 2022
By exploiting a time of check to time of use (TOCTOU) race condition during the Endpoint Security... High Unreviewed
CVE-2021-23892 was published May 24, 2022
Privilege Escalation vulnerability in the File Lock component of McAfee Total Protection (MTP)... High Unreviewed
CVE-2021-23872 was published May 24, 2022
Windows WalletService Elevation of Privilege Vulnerability High Unreviewed
CVE-2021-31187 was published May 24, 2022
Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root... High Unreviewed
CVE-2020-28007 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database