Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

20 advisories

Loading
Local Temp Directory Hijacking Vulnerability High
CVE-2020-27216 was published for org.eclipse.jetty:jetty-webapp (Maven) Nov 4, 2020
JLLeitschuh timtebeek
Insecure temporary directory usage in frontend build functionality of Vaadin 14 and 15-19 High
CVE-2021-31411 was published for com.vaadin:vaadin-bom (Maven) May 6, 2021
Adobe Creative Cloud version 5.5 (and earlier) are affected by an Application denial of service... High Unreviewed
CVE-2021-43017 was published Nov 19, 2021
Adobe Creative Cloud Desktop Application version 5.3 (and earlier) is affected by a file handling... High Unreviewed
CVE-2021-21068 was published May 24, 2022
Adobe Digital Editions version 4.5.11.187245 (and earlier) is affected by a Privilege Escalation... High Unreviewed
CVE-2021-21100 was published May 24, 2022
Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by an arbitrary file write... High Unreviewed
CVE-2021-39827 was published May 24, 2022
Adobe Creative Cloud Desktop Application version 5.4 (and earlier) is affected by a file handling... High Unreviewed
CVE-2021-28613 was published May 24, 2022
Adobe Genuine Service versions 7.3 (and earlier) are affected by a privilege escalation... High Unreviewed
CVE-2021-40708 was published May 24, 2022
Adobe Lightroom Classic 10.3 (and earlier) are affected by a privilege escalation vulnerability... High Unreviewed
CVE-2021-40776 was published Jun 16, 2022
Temporary Directory Hijacking to Local Privilege Escalation Vulnerability in org.springframework.boot:spring-boot High
CVE-2022-27772 was published for org.springframework.boot:spring-boot (Maven) Jul 11, 2022
trgpa JLLeitschuh
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005... High Unreviewed
CVE-2023-21612 was published Jan 18, 2023
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005... High Unreviewed
CVE-2023-21611 was published Jan 18, 2023
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are... High Unreviewed
CVE-2023-26396 was published Apr 12, 2023
Dell Power Manager, Versions 3.3 to 3.14 contains an Improper Access Control vulnerability. A... High Unreviewed
CVE-2023-32450 was published Jul 27, 2023
The C:\Windows\Temp\Agent.Package.Availability\Agent.Package.Availability.exe file is... High Unreviewed
CVE-2023-37243 was published Oct 31, 2023
A vulnerability was found in insights-client. This security issue occurs because of insecure file... High Unreviewed
CVE-2023-3972 was published Nov 1, 2023
Local Privilege Escalation in Windows High
CVE-2023-49797 was published for pyinstaller (pip) Dec 9, 2023
The C:\Program Files (x86)\Splashtop\Splashtop Software Updater\uninst.exe process creates a... High Unreviewed
CVE-2023-3181 was published Jan 25, 2024
Improper access control in the installer for Zoom Rooms Client for Windows before version 5.17.5... High Unreviewed
CVE-2024-24693 was published Mar 13, 2024
Insecure permissions in Linksys Velop WiFi 5 (WHW01v1) 1.1.13.202617 allows attackers to escalate... High Unreviewed
CVE-2024-36821 was published Jun 11, 2024
ProTip! Advisories are also available from the GraphQL API