Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,086
Maven
5,000+
npm
3,747
NuGet
674
pip
3,436
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+

537 advisories

Loading
The administrative UI component of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO... High Unreviewed
CVE-2020-9409 was published May 24, 2022
Panasonic P110, Eluga Z1 Pro, Eluga X1, and Eluga X1 Pro devices through 2020-04-10 have Insecure... High Unreviewed
CVE-2020-11716 was published May 24, 2022
Adobe Genuine Integrity Service versions Version 6.4 and earlier have an insecure file... High Unreviewed
CVE-2020-3766 was published May 24, 2022
OpenStack Manila Unprivileged users can retrieve, use and manipulate share networks High
CVE-2020-9543 was published for manila (pip) May 24, 2022
The issue was addressed with improved permissions logic. This issue is fixed in iOS 13.3.1 and... High Unreviewed
CVE-2020-3838 was published May 24, 2022
Couchbase Server 4.x and 5.x before 6.0.0 has Insecure Permissions for the projector and indexer... High Unreviewed
CVE-2020-9039 was published May 24, 2022
A privilege escalation vulnerability in Wowza Streaming Engine 4.7.7 and 4.7.8 allows any... High Unreviewed
CVE-2019-7656 was published May 24, 2022
Cerberus FTP Server Enterprise Edition prior to versions 11.0.3 and 10.0.18 allows an... High Unreviewed
CVE-2020-5196 was published May 24, 2022
ColdFusion versions Update 6 and earlier have an insecure inherited permissions of default... High Unreviewed
CVE-2019-8256 was published May 24, 2022
Singularity insecure permissions High
CVE-2019-19724 was published for github.com/sylabs/singularity (Go) May 24, 2022
Improper directory permissions in the installer for Intel(R) Management Engine Consumer Driver... High Unreviewed
CVE-2019-11097 was published May 24, 2022
Improper permissions in the installer for the License Server software for Intel? Quartus? Prime... High Unreviewed
CVE-2019-14603 was published May 24, 2022
Improper permissions in the installer for the Intel(R) SCS Platform Discovery Utility, all... High Unreviewed
CVE-2019-14605 was published May 24, 2022
Cloudera CDH has Insecure Permissions because ALL cannot be revoked.This affects 5.x through 5.15... High Unreviewed
CVE-2018-17860 was published May 24, 2022
In Vtiger 7.x before 7.2.0, the My Preferences saving functionality allows a user without... High Unreviewed
CVE-2019-19202 was published May 24, 2022
Improper directory permissions in Intel(R) PROSet/Wireless WiFi Software before version 21.40 may... High Unreviewed
CVE-2019-11155 was published May 24, 2022
Harbor API has a Broken Access Control vulnerability. The vulnerability allows project... High Unreviewed
CVE-2019-16919 was published May 24, 2022
An issue was discovered in BMC Patrol Agent 9.0.10i. Weak execution permissions on the... High Unreviewed
CVE-2019-17043 was published May 24, 2022
Ubisoft Uplay 92.0.0.6280 has Insecure Permissions. High Unreviewed
CVE-2019-14737 was published May 24, 2022
An issue was discovered in BMC Patrol Agent 9.0.10i. Weak execution permissions on the... High Unreviewed
CVE-2019-17044 was published May 24, 2022
In startActivityMayWait of ActivityStarter.java, there is a possible incorrect Activity launch... High Unreviewed
CVE-2019-2173 was published May 24, 2022
In the default privileges of NFC, there is a possible local bypass of user interaction... High Unreviewed
CVE-2019-2114 was published May 24, 2022
An issue was discovered in Kaseya VSA RMM through 9.5.0.22. When using the default configuration,... High Unreviewed
CVE-2019-14510 was published May 24, 2022
Nix through 2.3 allows local users to gain access to an arbitrary user's account because the... High Unreviewed
CVE-2019-17365 was published May 24, 2022
The Vernissage theme 1.2.8 for WordPress has insufficient restrictions on option updates. High Unreviewed
CVE-2015-9477 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database