GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
21
Go
2,002
Maven
5,000+
npm
3,713
NuGet
661
pip
3,384
Pub
11
RubyGems
885
Rust
850
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
9,979 advisories
Filter by severity
Acrobat Animate versions 21.0.9 (and earlier)is affected by an out-of-bounds read vulnerability...
Low
Unreviewed
CVE-2021-42525
was published
Nov 19, 2021
Adobe Audition version 14.2 (and earlier) is affected by an out-of-bounds read vulnerability when...
Low
Unreviewed
CVE-2021-36003
was published
Nov 20, 2021
Dell Networking OS10 versions 10.4.3.x, 10.5.0.x and 10.5.1.x contain an information exposure...
Low
Unreviewed
CVE-2021-36319
was published
Nov 21, 2021
Withdrawn: Arbitrary code execution in lodash
Low
Unreviewed
CVE-2021-41720
was published
for
lodash
(npm)
Dec 3, 2021
Adobe Bridge versions 11.1.1 (and earlier) are affected by an out-of-bounds read vulnerability...
Low
Unreviewed
CVE-2021-44187
was published
Dec 8, 2021
Adobe Bridge versions 11.1.1 (and earlier) are affected by an out-of-bounds read vulnerability...
Low
Unreviewed
CVE-2021-44186
was published
Dec 8, 2021
Adobe Bridge versions 11.1.1 (and earlier) are affected by an out-of-bounds read vulnerability...
Low
Unreviewed
CVE-2021-44185
was published
Dec 8, 2021
Improper export of Android application components vulnerability in Samsung Pay (India only) prior...
Low
Unreviewed
CVE-2021-25527
was published
Dec 9, 2021
Insecure storage of device information in Contacts prior to version 12.7.05.24 allows attacker to...
Low
Unreviewed
CVE-2021-25524
was published
Dec 9, 2021
Insecure caller check in sharevia deeplink logic prior to Samsung Internet 16.0.2 allows...
Low
Unreviewed
CVE-2021-25521
was published
Dec 9, 2021
Insecure storage of sensitive information vulnerability in Smart Capture prior to version 4.8.02...
Low
Unreviewed
CVE-2021-25522
was published
Dec 9, 2021
Insecure storage of device information in Samsung Dialer prior to version 12.7.05.24 allows...
Low
Unreviewed
CVE-2021-25523
was published
Dec 9, 2021
An improper access control vulnerability in CPLC prior to SMR Dec-2021 Release 1 allows local...
Low
Unreviewed
CVE-2021-25519
was published
Dec 9, 2021
An improper usage of implicit intent in SemRewardManager prior to SMR Dec-2021 Release 1 allows...
Low
Unreviewed
CVE-2021-25515
was published
Dec 9, 2021
An improper privilege management vulnerability in Apps Edge application prior to SMR Dec-2021...
Low
Unreviewed
CVE-2021-25513
was published
Dec 9, 2021
In cancelNotificationsFromListener of NotificationManagerService.java, there is a possible way to...
Low
Unreviewed
CVE-2021-1031
was published
Dec 16, 2021
In getMimeGroup of PackageManagerService.java, there is a possible way to determine whether an...
Low
Unreviewed
CVE-2021-1032
was published
Dec 16, 2021
In getLine1NumberForDisplay of PhoneInterfaceManager.java, there is apossible way to determine...
Low
Unreviewed
CVE-2021-1034
was published
Dec 16, 2021
In adjustStreamVolume of AudioService.java, there is a possible way to determine whether an app...
Low
Unreviewed
CVE-2021-1018
was published
Dec 16, 2021
In getMeidForSlot of PhoneInterfaceManager.java, there is a possible way to determine whether an...
Low
Unreviewed
CVE-2021-1015
was published
Dec 16, 2021
In registerSuggestionConnectionStatusListener of WifiServiceImpl.java, there is a possible way to...
Low
Unreviewed
CVE-2021-0995
was published
Dec 16, 2021
In requestRouteToHostAddress of ConnectivityService.java, there is a possible way to determine...
Low
Unreviewed
CVE-2021-0994
was published
Dec 16, 2021
In onCreate of PaymentDefaultDialog.java, there is a possible way to change a default payment app...
Low
Unreviewed
CVE-2021-0992
was published
Dec 16, 2021
In getDeviceId of PhoneSubInfoController.java, there is a possible way to determine whether an...
Low
Unreviewed
CVE-2021-0990
was published
Dec 16, 2021
In OnMetadataChangedListener of AdvancedBluetoothDetailsHeaderController.java, there is a...
Low
Unreviewed
CVE-2021-0991
was published
Dec 16, 2021
ProTip!
Advisories are also available from the
GraphQL API