Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,877
Erlang
37
GitHub Actions
38
Go
2,532
Maven
5,000+
npm
4,191
NuGet
742
pip
3,970
Pub
12
RubyGems
947
Rust
1,030
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

159 advisories

Loading
Vulnerability in the Oracle Solaris product of Oracle Systems (component: Zones). The supported... High Unreviewed
CVE-2024-20999 was published Apr 17, 2024
An Insecure Direct Object Reference (IDOR) vulnerability exists in the lunary-ai/lunary... Critical Unreviewed
CVE-2024-1626 was published Apr 16, 2024
An issue in Canimaan Software LTD ClamXAV v3.1.2 through v3.6.1 and fixed in v.3.6.2 allows a... High Unreviewed
CVE-2024-24245 was published Apr 9, 2024
Aterm WG1800HP4, WG1200HS3, WG1900HP2, WG1200HP3, WG1800HP3, WG1200HS2, WG1900HP, WG1200HP2,... Moderate Unreviewed
CVE-2024-28005 was published Mar 28, 2024
NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer when the... High Unreviewed
CVE-2024-0073 was published Mar 28, 2024
A privilege escalation issue existed in FileMaker Server, potentially exposing sensitive... Moderate Unreviewed
CVE-2023-42954 was published Mar 22, 2024
setuid() does not affect libuv's internal io_uring operations if initialized before the call to... High Unreviewed
CVE-2024-22017 was published Mar 19, 2024
This allows attackers to use a maliciously formed API request to gain access to an API... High Unreviewed
CVE-2024-1222 was published Mar 14, 2024
An issue was discovered in Grandstream GXP14XX 1.0.8.9 and GXP16XX 1.0.7.13, allows remote... High Unreviewed
CVE-2023-50015 was published Mar 9, 2024
A CWE-250 “Execution with Unnecessary Privileges” vulnerability in the embedded Chromium browser ... Moderate Unreviewed
CVE-2023-45592 was published Mar 5, 2024
Hardy Barth cPH2 eCharge Ladestation v1.87.0 and earlier is vulnerable to Execution with... High Unreviewed
CVE-2023-46360 was published Feb 6, 2024
An issue in Notion for macOS version 3.1.0 and before, allows remote attackers to execute... Critical Unreviewed
CVE-2024-23743 was published Jan 28, 2024
TOTOlink A3700R v9.1.2u.5822_B20200513 was discovered to contain a remote command execution (RCE)... Critical Unreviewed
CVE-2023-52030 was published Jan 11, 2024
This privilege escalation vulnerability, if exploited, cloud allow a local OS-authenticated user... High Unreviewed
CVE-2023-33873 was published Nov 15, 2023
This vulnerability allows local attackers to escalate privileges on affected installations of... Moderate Unreviewed
CVE-2023-6006 was published Nov 14, 2023
IBM CICS TX Standard 11.1 and Advanced 10.1, 11.1 performs an operation at a privilege level that... Moderate Unreviewed
CVE-2023-43018 was published Nov 3, 2023
SnapCenter Plugin for VMware vSphere versions 4.6 prior to 4.9 are susceptible to a... Moderate Unreviewed
CVE-2023-27312 was published Oct 12, 2023
SnapCenter versions 3.x and 4.x prior to 4.9 are susceptible to a vulnerability which may allow... High Unreviewed
CVE-2023-27313 was published Oct 12, 2023
A vulnerability was discovered in GitLab CE and EE affecting all versions starting 16.0 prior to... High Unreviewed
CVE-2023-5207 was published Sep 30, 2023
One Identity Password Manager version 5.9.7.1 - An unauthenticated attacker with physical access... Moderate Unreviewed
CVE-2023-4003 was published Sep 27, 2023
Execution with Unnecessary Privileges vulnerability in Saphira Saphira Connect allows Remote Code... Critical Unreviewed
CVE-2023-4662 was published Sep 15, 2023
A Privilege escalation vulnerability exists in Trellix Windows DLP endpoint for windows which... High Unreviewed
CVE-2023-4814 was published Sep 14, 2023
An Execution with Unnecessary Privileges vulnerability in the Schweitzer Engineering... Critical Unreviewed
CVE-2023-31175 was published Aug 31, 2023
A vulnerability in the CLI of Cisco ThousandEyes Enterprise Agent, Virtual Appliance installation... Moderate Unreviewed
CVE-2023-20217 was published Aug 17, 2023
Dell PowerScale OneFS 9.5.x version contain a privilege escalation vulnerability. A low... High Unreviewed
CVE-2023-32486 was published Aug 16, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database