Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

870 advisories

Loading
Improper access control in the firmware for some Intel(R) Processors may allow a privileged user... Moderate Unreviewed
CVE-2021-0124 was published Feb 11, 2022
Improper access control in software for Intel(R) PROSet/Wireless Wi-Fi and Killer(TM) Wi-Fi in... Moderate Unreviewed
CVE-2021-0167 was published Feb 11, 2022
Improper access control in software for Intel(R) PROSet/Wireless Wi-Fi and Killer(TM) Wi-Fi in... Moderate Unreviewed
CVE-2021-0171 was published Feb 11, 2022
Improper access control in the Intel(R) RealSense(TM) DCM before version 20210625 may allow an... Moderate Unreviewed
CVE-2021-33119 was published Feb 11, 2022
There is an unauthorized rewriting vulnerability with the memory access management module on ACPU... Moderate Unreviewed
CVE-2021-37115 was published Feb 11, 2022
There is an unauthorized rewriting vulnerability with the memory access management module on ACPU... Moderate Unreviewed
CVE-2021-39991 was published Feb 11, 2022
An authorization logic error in the External Status Check API in GitLab EE affecting all versions... Moderate Unreviewed
CVE-2021-39943 was published Feb 11, 2022
There is an unauthorized rewriting vulnerability with the memory access management module on ACPU... Moderate Unreviewed
CVE-2021-39986 was published Feb 11, 2022
Improper access control in the Intel(R) Capital Global Summit Android application may allow an... Moderate Unreviewed
CVE-2022-21153 was published Feb 11, 2022
Improper access control in the Intel(R) Smart Campus Android application before version 6.1 may... Moderate Unreviewed
CVE-2022-21157 was published Feb 11, 2022
Microsoft OneDrive for Android Security Feature Bypass Vulnerability. Moderate Unreviewed
CVE-2022-23255 was published Feb 10, 2022
After the initial setup process, some steps of setup.php file are reachable not only by super... Moderate Unreviewed
CVE-2022-23134 was published Feb 9, 2022
Account Hijacking in /northstar/Admin/changePassword.jsp in Northstar Technologies Inc NorthStar... Moderate Unreviewed
CVE-2021-29394 was published Feb 9, 2022
An improper access control vulnerability [CWE-284] in FortiAuthenticator HA service 6.3.2 and... Moderate Unreviewed
CVE-2021-36177 was published Feb 8, 2022
The RVM WordPress plugin before 6.4.2 does not have proper authorisation, CSRF checks and... Moderate Unreviewed
CVE-2021-24947 was published Feb 8, 2022
The Ultimate Product Catalog WordPress plugin before 5.0.26 does not have authorisation and CSRF... Moderate Unreviewed
CVE-2021-24993 was published Feb 8, 2022
The LabTools WordPress plugin through 1.0 does not have proper authorisation and CSRF check in... Moderate Unreviewed
CVE-2021-25097 was published Feb 2, 2022
The WP Post Page Clone WordPress plugin before 1.2 allows users with a role as low as Contributor... Moderate Unreviewed
CVE-2021-24733 was published Jan 25, 2022
Mattermost 6.1 and earlier fails to sufficiently validate permissions while viewing archived... Moderate Unreviewed
CVE-2021-37864 was published Jan 19, 2022
An issue has been discovered in GitLab CE/EE affecting all versions starting with 12.3. Under... Moderate Unreviewed
CVE-2022-0172 was published Jan 19, 2022
An issue was discovered in Delta RM 1.2. The /risque/risque/workflow/reset endpoint is lacking... Moderate Unreviewed
CVE-2021-44836 was published Jan 19, 2022
An issue was discovered in SysAid ITIL 20.4.74 b10. The /enduserreg endpoint is used to register... Moderate Unreviewed
CVE-2021-43974 was published Jan 12, 2022
Secure Boot Security Feature Bypass Vulnerability. Moderate Unreviewed
CVE-2022-21894 was published Jan 12, 2022
Windows Extensible Firmware Interface Security Feature Bypass Vulnerability. Moderate Unreviewed
CVE-2022-21899 was published Jan 12, 2022
Local Security Authority (Domain Policy) Remote Protocol Security Feature Bypass. Moderate Unreviewed
CVE-2022-21913 was published Jan 12, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database