GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,787
Composer 4,248
Erlang 31
GitHub Actions 21
Go 2,016
Maven 5,202
npm 3,721
NuGet 662
pip 3,400
Pub 11
RubyGems 890
Rust 852
Swift 36

Unreviewed advisories

All unreviewed 236,276

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,040 advisories

Filter by severity

Sort by

Least recently updated

The Dell Isilon OneFS versions 8.2.2 and earlier SSHD process improperly allows Transmission... Moderate Unreviewed

CVE-2020-5355 was published Oct 21, 2022

WinGate v9.4.1.5998 has insecure permissions for the installation directory, which allows local... High Unreviewed

CVE-2020-13866 was published May 24, 2022

A permissions issue existed. This issue was addressed with improved permission validation. This... High Unreviewed

CVE-2020-9817 was published May 24, 2022

A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507... Moderate Unreviewed

CVE-2020-8933 was published May 24, 2022

Insufficient policy enforcement in developer tools in Google Chrome prior to 83.0.4103.61 allowed... Moderate Unreviewed

CVE-2020-6471 was published May 24, 2022

In updateUidProcState of AppOpsService.java, there is a possible permission bypass due to a logic... Low Unreviewed

CVE-2020-0121 was published May 24, 2022

Insufficient policy enforcement in downloads in Google Chrome prior to 83.0.4103.61 allowed a... Moderate Unreviewed

CVE-2020-6487 was published May 24, 2022

Insufficient policy enforcement in enterprise in Google Chrome prior to 83.0.4103.61 allowed a... Low Unreviewed

CVE-2020-6480 was published May 24, 2022

I2P before 0.9.46 allows local users to gain privileges via a Trojan horse I2PSvc.exe file... High Unreviewed

CVE-2020-13431 was published May 24, 2022

A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507... Moderate Unreviewed

CVE-2020-8903 was published May 24, 2022

Insufficient policy enforcement in developer tools in Google Chrome prior to 83.0.4103.97 allowed... Moderate Unreviewed

CVE-2020-6495 was published May 24, 2022

Insufficient policy enforcement in Omnibox in Google Chrome on iOS prior to 83.0.4103.88 allowed... Moderate Unreviewed

CVE-2020-6497 was published May 24, 2022

Incorrect implementation in user interface in Google Chrome on iOS prior to 83.0.4103.88 allowed... Moderate Unreviewed

CVE-2020-6498 was published May 24, 2022

In checkSystemLocationAccess of LocationAccessPolicy.java, there is a possible bypass of user... Moderate Unreviewed

CVE-2020-0116 was published May 24, 2022

In dump of RollbackManagerServiceImpl.java, there is a possible backup metadata exposure due to a... Low Unreviewed

CVE-2020-0135 was published May 24, 2022

In getUiccCardsInfo of PhoneInterfaceManager.java, there is a possible permissions bypass due to... Low Unreviewed

CVE-2020-0107 was published May 24, 2022

A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507... Moderate Unreviewed

CVE-2020-8907 was published May 24, 2022

Insufficient policy enforcement in CSP in Google Chrome prior to 84.0.4147.89 allowed a remote... Moderate Unreviewed

CVE-2020-6527 was published May 24, 2022

In Java network APIs, there is possible access to sensitive network state due to a missing... Moderate Unreviewed

CVE-2020-0293 was published May 24, 2022

In SyncManager, there is a possible permission bypass due to an unsafe PendingIntent. This could... Moderate Unreviewed

CVE-2020-0426 was published May 24, 2022

In Telephony, there is a possible permission bypass due to a missing permission check. This could... Moderate Unreviewed

CVE-2020-0276 was published May 24, 2022

In Settings, there is a possible permission bypass due to an unsafe PendingIntent. This could... Moderate Unreviewed

CVE-2020-0302 was published May 24, 2022

In Telephony, there is a missing permission check. This could lead to local information... Moderate Unreviewed

CVE-2020-0316 was published May 24, 2022

In Settings, there is a possible permission bypass due to an unsafe PendingIntent. This could... Moderate Unreviewed

CVE-2020-0307 was published May 24, 2022

In Battery Saver, there is a possible permission bypass due to an unsafe PendingIntent. This... Moderate Unreviewed

CVE-2020-0312 was published May 24, 2022

Previous 1 2 … 6 7 8 9 10 … 41 42 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,040 advisories