Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+

71 advisories

Loading
Context isolation bypass in Electron Low
CVE-2020-15215 was published for electron (npm) Oct 6, 2020
nornagon MarshallOfSound
An issue with app access to camera metadata was addressed with improved logic. This issue is... Low Unreviewed
CVE-2022-22598 was published Mar 19, 2022
In getOrganizationNameForUser of DevicePolicyManagerService.java, there is a possible... Low Unreviewed
CVE-2021-0982 was published Dec 16, 2021
In requestRouteToHostAddress of ConnectivityService.java, there is a possible way to determine... Low Unreviewed
CVE-2021-0994 was published Dec 16, 2021
A business logic error in Project Import in GitLab CE/EE versions 14.9 prior to 14.9.2, 14.8... Low Unreviewed
CVE-2022-1111 was published Apr 5, 2022
Improper access control vulnerability in SamsungContacts prior to SMR Apr-2022 Release 1 allows... Low Unreviewed
CVE-2022-26090 was published Apr 12, 2022
Exposure of Resource to Wrong Sphere in Simple-Wayland-HotKey-Daemon Low
CVE-2022-27814 was published for Simple-Wayland-HotKey-Daemon (Rust) Apr 15, 2022
Shinyzenith
An improper usage of implicit intent in SemRewardManager prior to SMR Dec-2021 Release 1 allows... Low Unreviewed
CVE-2021-25515 was published Dec 9, 2021
A lock screen issue allowed access to contacts on a locked device. This issue was addressed with... Low Unreviewed
CVE-2021-30815 was published May 24, 2022
Sensitive information exposure in low-battery dumpstate log prior to SMR Jun-2022 Release 1... Low Unreviewed
CVE-2022-28794 was published Jun 8, 2022
Azure RTOS Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-26444, CVE... Low Unreviewed
CVE-2021-42323 was published May 24, 2022
The issue was addressed with improved permissions logic. This issue is fixed in iOS 15 and iPadOS... Low Unreviewed
CVE-2021-30816 was published May 24, 2022
Information exposure vulnerability in SemIWCMonitor prior to SMR Jun-2022 Release 1 allows local... Low Unreviewed
CVE-2022-30714 was published Jun 8, 2022
An issue was discovered in PrimeKey EJBCA before 7.6.0. As part of the configuration of the... Low Unreviewed
CVE-2021-40086 was published May 24, 2022
Information exposure vulnerability in ScanPool prior to SMR Jun-2022 Release 1 allows local... Low Unreviewed
CVE-2022-30728 was published Jun 8, 2022
Compromised child renderer processes could obtain IPC access without nodeIntegrationInSubFrames being enabled Low
CVE-2022-29247 was published for electron (npm) Jun 16, 2022
TheGrandPew msrkp
Exposure of Sensitive Information in getDsaSimImsi in TelephonyUI prior to SMR Jul-2022 Release 1... Low Unreviewed
CVE-2022-33699 was published Jul 13, 2022
IBM Jazz Team Server 6.0.6, 6.0.6.1, 7.0, 7.0.1, and 7.0.2 allows web pages to be stored locally... Low Unreviewed
CVE-2021-20551 was published Jun 25, 2022
Exposure of Sensitive Information in CSC application prior to SMR Jul-2022 Release 1 allows local... Low Unreviewed
CVE-2022-33694 was published Jul 13, 2022
Exposure of Sensitive Information in putDsaSimImsi in TelephonyUI prior to SMR Jul-2022 Release 1... Low Unreviewed
CVE-2022-33700 was published Jul 13, 2022
Exposure of Sensitive Information in Messaging application prior to SMR Jul-2022 Release 1 allows... Low Unreviewed
CVE-2022-33692 was published Jul 13, 2022
Exposure of Sensitive Information in Telecom application prior to SMR Jul-2022 Release 1 allows... Low Unreviewed
CVE-2022-33698 was published Jul 13, 2022
Exposure of Sensitive Information in Telephony service prior to SMR Jul-2022 Release 1 allows... Low Unreviewed
CVE-2022-33696 was published Jul 13, 2022
In various functions of ap_input_processor.c, there is a possible way to record audio during a... Low Unreviewed
CVE-2022-20562 was published Dec 21, 2022
In multiple locations of WifiDialogActivity.java, there is a possible limited lockscreen bypass... Low Unreviewed
CVE-2022-20529 was published Dec 20, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database