Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

64 advisories

Loading
An issue was discovered in GeoVision GV-Edge Recording Manager 2.2.3.0 for windows, which... Critical Unreviewed
CVE-2023-23059 was published May 4, 2023
Diasoft File Replication Pro 7.5.0 allows attackers to escalate privileges by replacing a... Critical Unreviewed
CVE-2023-26918 was published Apr 14, 2023
An issue in ttyd v.1.6.3 allows attacker to execute arbitrary code via default configuration... Critical Unreviewed
CVE-2021-34182 was published Feb 17, 2023
Weak File and Folder Permissions vulnerability in CLUSTERPRO X 5.0 for Windows and earlier,... Critical Unreviewed
CVE-2022-34824 was published Nov 9, 2022
TOTOLINK A3002R TOTOLINK-A3002R-He-V1.1.1-B20200824.0128 is vulnerable to Insecure Permissions... Critical Unreviewed
CVE-2022-40109 was published Sep 7, 2022
influxData influxDB before v1.8.10 contains no authentication mechanism or controls, allowing... Critical Unreviewed
CVE-2022-36640 was published Sep 3, 2022
The AOD module has a vulnerability in permission assignment. Successful exploitation of this... Critical Unreviewed
CVE-2022-37003 was published Aug 11, 2022
The application security module has a vulnerability in permission assignment. Successful... Critical Unreviewed
CVE-2022-34737 was published Jul 13, 2022
When curl < 7.84.0 saves cookies, alt-svc and hsts data to local files, it makes the operation... Critical Unreviewed
CVE-2022-32207 was published Jul 8, 2022
Power Distribution Units running on Powertek firmware (multiple brands) before 3.30.30 have an... Critical Unreviewed
CVE-2022-33175 was published Jun 14, 2022
There is a Kernel crash vulnerability in Huawei Smartphone.Successful exploitation of this... Critical Unreviewed
CVE-2021-36989 was published May 24, 2022
There is a vulnerability of tampering with the kernel in Huawei Smartphone.Successful... Critical Unreviewed
CVE-2021-36990 was published May 24, 2022
Nagios XI before 5.8.5 has Incorrect Permission Assignment for migrate.php. Critical Unreviewed
CVE-2021-36363 was published May 24, 2022
Nagios XI before 5.8.5 has Incorrect Permission Assignment for repairmysql.sh. Critical Unreviewed
CVE-2021-36365 was published May 24, 2022
In XeroSecurity Sn1per 9.0 (free version), insecure directory permissions (0777) are set during... Critical Unreviewed
CVE-2021-39274 was published May 24, 2022
An insecure permissions issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus... Critical Unreviewed
CVE-2021-37167 was published May 24, 2022
In SolarWinds DameWare Mini Remote Control Server 12.0.1.200, insecure file permissions allow... Critical Unreviewed
CVE-2021-31217 was published May 24, 2022
There is an Improper Permission Management Vulnerability in Huawei Smartphone. Successful... Critical Unreviewed
CVE-2021-22376 was published May 24, 2022
Creation of a Temporary Directory with Insecure Permissions in Nagios XI 5.7.5 and earlier allows... Critical Unreviewed
CVE-2020-28910 was published May 24, 2022
Incorrect default permissions vulnerability in the API of Netop Vision Pro up to and including 9... Critical Unreviewed
CVE-2021-27193 was published May 24, 2022
In the Zstandard command-line utility prior to v1.4.1, output files were created with default... Critical Unreviewed
CVE-2021-24031 was published May 24, 2022
Beginning in v1.4.1 and prior to v1.4.9, due to an incomplete fix for CVE-2021-24031, the... Critical Unreviewed
CVE-2021-24032 was published May 24, 2022
An issue was discovered in SeTracker2 for TK-Star Q90 Junior GPS horloge 3.1042.9.8656 devices.... Critical Unreviewed
CVE-2019-20468 was published May 24, 2022
In Gotenberg through 6.2.1, insecure permissions for tini (writable by user gotenberg)... Critical Unreviewed
CVE-2020-13452 was published May 24, 2022
Dell Wyse ThinOS 8.6 and prior versions contain an insecure default configuration vulnerability.... Critical Unreviewed
CVE-2020-29492 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database