GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
112 advisories
Filter by severity
Dell PowerScale OneFS versions 8.2.x through 9.7.0.1 contains an execution with unnecessary...
Moderate
Unreviewed
CVE-2024-25967
was published
May 14, 2024
An Insecure Direct Object Reference (IDOR) vulnerability exists in the lunary-ai/lunary...
Critical
Unreviewed
CVE-2024-1626
was published
Apr 16, 2024
An issue in Canimaan Software LTD ClamXAV v3.1.2 through v3.6.1 and fixed in v.3.6.2 allows a...
High
Unreviewed
CVE-2024-24245
was published
Apr 9, 2024
Aterm WG1800HP4, WG1200HS3, WG1900HP2, WG1200HP3, WG1800HP3, WG1200HS2, WG1900HP, WG1200HP2,...
Moderate
Unreviewed
CVE-2024-28005
was published
Mar 28, 2024
NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer when the...
High
Unreviewed
CVE-2024-0073
was published
Mar 28, 2024
A privilege escalation issue existed in FileMaker Server, potentially exposing sensitive...
Moderate
Unreviewed
CVE-2023-42954
was published
Mar 22, 2024
setuid() does not affect libuv's internal io_uring operations if initialized before the call to...
High
Unreviewed
CVE-2024-22017
was published
Mar 19, 2024
This allows attackers to use a maliciously formed API request to gain access to an API...
High
Unreviewed
CVE-2024-1222
was published
Mar 14, 2024
An issue was discovered in Grandstream GXP14XX 1.0.8.9 and GXP16XX 1.0.7.13, allows remote...
High
Unreviewed
CVE-2023-50015
was published
Mar 9, 2024
A CWE-250 “Execution with Unnecessary Privileges” vulnerability in the embedded Chromium browser ...
Moderate
Unreviewed
CVE-2023-45592
was published
Mar 5, 2024
Hardy Barth cPH2 eCharge Ladestation v1.87.0 and earlier is vulnerable to Execution with...
High
Unreviewed
CVE-2023-46360
was published
Feb 6, 2024
An issue in Notion for macOS version 3.1.0 and before, allows remote attackers to execute...
Critical
Unreviewed
CVE-2024-23743
was published
Jan 28, 2024
Kruise allows leveraging the kruise-daemon pod to list all secrets in the entire cluster
Moderate
CVE-2023-30617
was published
for
github.com/openkruise/kruise
(Go)
Jan 5, 2024
This privilege escalation vulnerability, if exploited, cloud allow a local OS-authenticated user...
High
Unreviewed
CVE-2023-33873
was published
Nov 15, 2023
This vulnerability allows local attackers to escalate privileges on affected installations of...
Moderate
Unreviewed
CVE-2023-6006
was published
Nov 14, 2023
IBM CICS TX Standard 11.1 and Advanced 10.1, 11.1 performs an operation at a privilege level that...
Moderate
Unreviewed
CVE-2023-43018
was published
Nov 3, 2023
SnapCenter Plugin for VMware vSphere versions 4.6 prior to 4.9 are
susceptible to a...
Moderate
Unreviewed
CVE-2023-27312
was published
Oct 12, 2023
SnapCenter versions 3.x and 4.x prior to 4.9 are susceptible to a
vulnerability which may allow...
High
Unreviewed
CVE-2023-27313
was published
Oct 12, 2023
kOps privilege escalation vulnerability
High
CVE-2023-1943
was published
for
k8s.io/kops
(Go)
Oct 12, 2023
A vulnerability was discovered in GitLab CE and EE affecting all versions starting 16.0 prior to...
High
Unreviewed
CVE-2023-5207
was published
Sep 30, 2023
One Identity Password Manager version 5.9.7.1 - An unauthenticated attacker with physical access...
Moderate
Unreviewed
CVE-2023-4003
was published
Sep 27, 2023
Execution with Unnecessary Privileges vulnerability in Saphira Saphira Connect allows Remote Code...
Critical
Unreviewed
CVE-2023-4662
was published
Sep 15, 2023
A Privilege escalation vulnerability exists in Trellix Windows DLP endpoint for windows which...
High
Unreviewed
CVE-2023-4814
was published
Sep 14, 2023
An Execution with Unnecessary Privileges vulnerability in the Schweitzer Engineering...
Critical
Unreviewed
CVE-2023-31175
was published
Aug 31, 2023
A vulnerability in the CLI of Cisco ThousandEyes Enterprise Agent, Virtual Appliance installation...
Moderate
Unreviewed
CVE-2023-20217
was published
Aug 17, 2023
ProTip!
Advisories are also available from the
GraphQL API