GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,141
Erlang
30
GitHub Actions
19
Go
1,942
Maven
5,000+
npm
3,684
NuGet
650
pip
3,303
Pub
11
RubyGems
878
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,152 advisories
Filter by severity
Incorrect Authorization in WildFly Elytron
High
CVE-2020-1748
was published
for
org.wildfly.security:wildfly-elytron
(Maven)
Feb 15, 2022
nats-io/jwt not enforcing checking of Import token permissions
Critical
CVE-2021-3127
was published
for
github.com/nats-io/jwt
(Go)
Feb 15, 2022
Inappropriate implementation in Service Worker API in Google Chrome prior to 97.0.4692.99 allowed...
Moderate
Unreviewed
CVE-2022-0305
was published
Feb 15, 2022
Inappropriate implementation in Autofill in Google Chrome prior to 97.0.4692.99 allowed a remote...
Moderate
Unreviewed
CVE-2022-0309
was published
Feb 15, 2022
Kiteworks MFT 7.5 may allow an unauthorized user to reset other users' passwords. This is fixed...
Moderate
Unreviewed
CVE-2022-24110
was published
Feb 15, 2022
antd-admin 5.5.0 is affected by an incorrect access control vulnerability. Unauthorized access to...
High
Unreviewed
CVE-2021-46371
was published
Feb 15, 2022
Sangoma Technologies Corporation Switchvox Version 102409 is affected by an information...
Moderate
Unreviewed
CVE-2021-45310
was published
Feb 15, 2022
When a password reset or password change flow with an authentication policy is configured and the...
Moderate
Unreviewed
CVE-2021-42000
was published
Feb 12, 2022
cmd/go in Go before 1.16.14 and 1.17.x before 1.17.7 can misinterpret branch names that falsely...
High
Unreviewed
CVE-2022-23773
was published
Feb 12, 2022
Drupal core access bypass vulnerability
High
CVE-2020-13677
was published
for
drupal/core
(Composer)
Feb 12, 2022
Incorrect Authorization in Drupal core
Moderate
CVE-2020-13676
was published
for
drupal/core
(Composer)
Feb 12, 2022
Improper access control vulnerability in Reminder prior to versions 12.3.01.3000 in Android S(12)...
Moderate
Unreviewed
CVE-2022-23433
was published
Feb 12, 2022
An Improper access control vulnerability in StBedtimeModeReceiver in Wear OS 3.0 prior to...
Moderate
Unreviewed
CVE-2022-23994
was published
Feb 12, 2022
Improper access control vulnerability in Camera prior to versions 11.1.02.16 in Android R(11), 10...
Moderate
Unreviewed
CVE-2022-23998
was published
Feb 12, 2022
Improper Authorization vulnerability in Link Sharing prior to version 12.4.00.3 allows attackers...
Moderate
Unreviewed
CVE-2022-24002
was published
Feb 12, 2022
An improper access control in LiveWallpaperService prior to versions 3.0.9.0 allows to create a...
Moderate
Unreviewed
CVE-2022-24924
was published
Feb 12, 2022
Improper access control vulnerability in Samsung SearchWidget prior to versions 2.3.00.6 in China...
Low
Unreviewed
CVE-2022-24923
was published
Feb 12, 2022
Improper access control in the firmware for some Intel(R) Processors may allow a privileged user...
Moderate
Unreviewed
CVE-2021-0124
was published
Feb 11, 2022
Improper access control in firmware for Intel(R) PROSet/Wireless Wi-Fi in multiple operating...
High
Unreviewed
CVE-2021-0164
was published
Feb 11, 2022
Improper access control in software for Intel(R) PROSet/Wireless Wi-Fi and Killer(TM) Wi-Fi in...
Moderate
Unreviewed
CVE-2021-0167
was published
Feb 11, 2022
Improper access control in software for Intel(R) PROSet/Wireless Wi-Fi and Killer(TM) Wi-Fi in...
Moderate
Unreviewed
CVE-2021-0171
was published
Feb 11, 2022
Improper access control in the Intel(R) Advisor software before version 2021.2 may allow an...
High
Unreviewed
CVE-2021-23152
was published
Feb 11, 2022
Improper access control in the Intel(R) RealSense(TM) DCM before version 20210625 may allow an...
Moderate
Unreviewed
CVE-2021-33119
was published
Feb 11, 2022
An authorization logic error in the External Status Check API in GitLab EE affecting all versions...
Moderate
Unreviewed
CVE-2021-39943
was published
Feb 11, 2022
ProTip!
Advisories are also available from the
GraphQL API