Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

419 advisories

Loading
Net-SNMP through 5.7.3 allows Escalation of Privileges because of UNIX symbolic link (symlink)... High Unreviewed
CVE-2020-15861 was published May 24, 2022
A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of exim in openSUSE... High Unreviewed
CVE-2020-8015 was published May 24, 2022
Privilege Escalation vulnerability in McAfee Data Loss Prevention (DLP) for Windows prior to 11.6... High Unreviewed
CVE-2020-7346 was published May 24, 2022
Adobe Creative Cloud Desktop Application versions 5.1 and earlier have a symlink vulnerability... High Unreviewed
CVE-2020-9682 was published May 24, 2022
A link following vulnerability in the Damage Cleanup Engine component of Trend Micro Apex One and... High Unreviewed
CVE-2022-45798 was published Dec 24, 2022
A vulnerability in Trend Micro Apex One on macOS may allow an attacker to manipulate a certain... High Unreviewed
CVE-2020-24559 was published May 24, 2022
A vulnerability in Trend Micro Apex One and OfficeScan XG SP1 on Microsoft Windows may allow an... High Unreviewed
CVE-2020-24556 was published May 24, 2022
UNIX Symbolic Link (Symlink) Following in TP-Link Archer A7(US)_V5_200721 allows an authenticated... High Unreviewed
CVE-2020-5795 was published May 24, 2022
Ilex International Sign&go Workstation Security Suite 7.1 allows elevation of privileges via a... High Unreviewed
CVE-2020-23968 was published May 24, 2022
The test suite in libopendkim in OpenDKIM through 2.10.3 allows local users to gain privileges... High Unreviewed
CVE-2020-35766 was published May 24, 2022
selinux_edit_copy_tfiles in sudoedit in Sudo before 1.9.5 allows a local unprivileged user to... High Unreviewed
CVE-2021-23240 was published May 24, 2022
Trend Micro Security 2020 (Consumer) contains a vulnerability in the installer package that could... High Unreviewed
CVE-2020-27697 was published May 24, 2022
Windows Installer Elevation of Privilege Vulnerability High Unreviewed
CVE-2021-26862 was published May 24, 2022
Digi ConnectPort X2e before 3.2.30.6 allows an attacker to escalate privileges from the python... High Unreviewed
CVE-2020-12878 was published May 24, 2022
In Malwarebytes Free 4.1.0.56, a symbolic link may be used delete an arbitrary file on the system... High Unreviewed
CVE-2020-28641 was published May 24, 2022
VestaCP through 0.9.8-24 allows attackers to gain privileges by creating symlinks to files for... High Unreviewed
CVE-2021-30463 was published May 24, 2022
Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability This CVE ID is... High Unreviewed
CVE-2021-28321 was published May 24, 2022
Western Digital My Cloud OS 5 devices before 5.10.122 mishandle Symbolic Link Following on SMB... High Unreviewed
CVE-2021-3310 was published May 24, 2022
Windows User Profile Service Elevation of Privilege Vulnerability High Unreviewed
CVE-2021-26873 was published May 24, 2022
Windows Update Stack Elevation of Privilege Vulnerability High Unreviewed
CVE-2021-26889 was published May 24, 2022
Windows Update Service Elevation of Privilege Vulnerability High Unreviewed
CVE-2021-26866 was published May 24, 2022
Privilege Escalation vulnerability in the File Lock component of McAfee Total Protection (MTP)... High Unreviewed
CVE-2021-23872 was published May 24, 2022
Private Tunnel installer for macOS version 3.0.1 and older versions may corrupt system critical... High Unreviewed
CVE-2020-15076 was published May 24, 2022
Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root... High Unreviewed
CVE-2020-28007 was published May 24, 2022
Windows WalletService Elevation of Privilege Vulnerability High Unreviewed
CVE-2021-31187 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database