GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
56 advisories
Filter by severity
An issue with app access to camera metadata was addressed with improved logic. This issue is...
Low
Unreviewed
CVE-2022-22598
was published
Mar 19, 2022
In getOrganizationNameForUser of DevicePolicyManagerService.java, there is a possible...
Low
Unreviewed
CVE-2021-0982
was published
Dec 16, 2021
In requestRouteToHostAddress of ConnectivityService.java, there is a possible way to determine...
Low
Unreviewed
CVE-2021-0994
was published
Dec 16, 2021
A business logic error in Project Import in GitLab CE/EE versions 14.9 prior to 14.9.2, 14.8...
Low
Unreviewed
CVE-2022-1111
was published
Apr 5, 2022
Improper access control vulnerability in SamsungContacts prior to SMR Apr-2022 Release 1 allows...
Low
Unreviewed
CVE-2022-26090
was published
Apr 12, 2022
An improper usage of implicit intent in SemRewardManager prior to SMR Dec-2021 Release 1 allows...
Low
Unreviewed
CVE-2021-25515
was published
Dec 9, 2021
A lock screen issue allowed access to contacts on a locked device. This issue was addressed with...
Low
Unreviewed
CVE-2021-30815
was published
May 24, 2022
Sensitive information exposure in low-battery dumpstate log prior to SMR Jun-2022 Release 1...
Low
Unreviewed
CVE-2022-28794
was published
Jun 8, 2022
Azure RTOS Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-26444, CVE...
Low
Unreviewed
CVE-2021-42323
was published
May 24, 2022
The issue was addressed with improved permissions logic. This issue is fixed in iOS 15 and iPadOS...
Low
Unreviewed
CVE-2021-30816
was published
May 24, 2022
Information exposure vulnerability in SemIWCMonitor prior to SMR Jun-2022 Release 1 allows local...
Low
Unreviewed
CVE-2022-30714
was published
Jun 8, 2022
An issue was discovered in PrimeKey EJBCA before 7.6.0. As part of the configuration of the...
Low
Unreviewed
CVE-2021-40086
was published
May 24, 2022
Information exposure vulnerability in ScanPool prior to SMR Jun-2022 Release 1 allows local...
Low
Unreviewed
CVE-2022-30728
was published
Jun 8, 2022
Exposure of Sensitive Information in getDsaSimImsi in TelephonyUI prior to SMR Jul-2022 Release 1...
Low
Unreviewed
CVE-2022-33699
was published
Jul 13, 2022
IBM Jazz Team Server 6.0.6, 6.0.6.1, 7.0, 7.0.1, and 7.0.2 allows web pages to be stored locally...
Low
Unreviewed
CVE-2021-20551
was published
Jun 25, 2022
Exposure of Sensitive Information in CSC application prior to SMR Jul-2022 Release 1 allows local...
Low
Unreviewed
CVE-2022-33694
was published
Jul 13, 2022
Exposure of Sensitive Information in Messaging application prior to SMR Jul-2022 Release 1 allows...
Low
Unreviewed
CVE-2022-33692
was published
Jul 13, 2022
Exposure of Sensitive Information in putDsaSimImsi in TelephonyUI prior to SMR Jul-2022 Release 1...
Low
Unreviewed
CVE-2022-33700
was published
Jul 13, 2022
Exposure of Sensitive Information in Telephony service prior to SMR Jul-2022 Release 1 allows...
Low
Unreviewed
CVE-2022-33696
was published
Jul 13, 2022
Exposure of Sensitive Information in Telecom application prior to SMR Jul-2022 Release 1 allows...
Low
Unreviewed
CVE-2022-33698
was published
Jul 13, 2022
In various functions of ap_input_processor.c, there is a possible way to record audio during a...
Low
Unreviewed
CVE-2022-20562
was published
Dec 21, 2022
In multiple locations of WifiDialogActivity.java, there is a possible limited lockscreen bypass...
Low
Unreviewed
CVE-2022-20529
was published
Dec 20, 2022
In enforceVisualVoicemailPackage of PhoneInterfaceManager.java, there is a possible leak of...
Low
Unreviewed
CVE-2022-20525
was published
Dec 20, 2022
An issue was discovered in Pulse Secure Pulse Connect Secure (PCS) through 2020-04-06. The applet...
Low
Unreviewed
CVE-2020-11582
was published
May 24, 2022
Information disclosure in the TeamCity plugin for IntelliJ before 2020.2.2.85899 was possible...
Low
Unreviewed
CVE-2021-26309
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API