GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,318
Erlang
31
GitHub Actions
21
Go
2,074
Maven
5,000+
npm
3,746
NuGet
674
pip
3,434
Pub
12
RubyGems
892
Rust
880
Swift
37
Unreviewed advisories
All unreviewed
5,000+
417 advisories
Filter by severity
Microsoft Office Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-26199
was published
Mar 12, 2024
Xbox Gaming Services Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-28916
was published
Mar 21, 2024
Windows Update Stack Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-21432
was published
Mar 12, 2024
Azure Connected Machine Agent Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-21329
was published
Feb 13, 2024
Visual Studio Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-20656
was published
Jan 9, 2024
An issue was discovered in TechView LA-5570 Wireless Gateway 1.0.19_T53, allows attackers to gain...
High
Unreviewed
CVE-2023-34723
was published
Aug 26, 2023
Shibboleth Service Provider (SP) 3.x before 3.1.0 shipped a spec file that calls chown on files...
High
Unreviewed
CVE-2019-19191
was published
May 24, 2022
rpcbind 0.2.0 allows local users to write to arbitrary files or gain privileges via a symlink...
High
Unreviewed
CVE-2010-2064
was published
Apr 21, 2022
Microsoft Brokering File System Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-28907
was published
Apr 9, 2024
Azure Monitor Agent Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-29989
was published
Apr 9, 2024
Windows File Server Resource Management Service Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-26216
was published
Apr 9, 2024
Microsoft Install Service Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-26158
was published
Apr 9, 2024
Windows Authentication Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-21447
was published
Apr 9, 2024
Zscaler Client Connector for Windows before 4.1 writes/deletes a configuration file inside...
High
Unreviewed
CVE-2023-28797
was published
Oct 23, 2023
1E Client installer can perform arbitrary file deletion on protected files.
A non-privileged...
High
Unreviewed
CVE-2023-45159
was published
Oct 5, 2023
A Improper Link Resolution Before File Access ('Link Following') vulnerability in SUSE SUSE Linux...
High
Unreviewed
CVE-2023-32182
was published
Sep 19, 2023
Inappropriate implementation in OS in Google Chrome on ChromeOS prior to 75.0.3770.80 allowed a...
High
Unreviewed
CVE-2019-13689
was published
Aug 25, 2023
UnRAR before 6.2.3 allows extraction of files outside of the destination folder via symlink chains.
High
Unreviewed
CVE-2022-48579
was published
Aug 7, 2023
Dell Command | Update, Dell Update, and Alienware Update versions 4.9.0, A01 and prior contain...
High
Unreviewed
CVE-2023-28071
was published
Jun 23, 2023
Dell Command | Update, Dell Update, and Alienware Update versions 4.8.0 and prior contain an...
High
Unreviewed
CVE-2023-28065
was published
Jun 23, 2023
Minecraft through 1.19 and 1.20 pre-releases before 7 (Java) allow arbitrary file overwrite, and...
High
Unreviewed
CVE-2023-33245
was published
May 30, 2023
Wacom Tablet Driver installer prior to 6.4.2-1 (for macOS) contains an improper link resolution...
High
Unreviewed
CVE-2023-27529
was published
May 25, 2023
Docker Desktop for Windows before 4.6.0 allows attackers to overwrite any file through a symlink...
High
Unreviewed
CVE-2022-34292
was published
Apr 27, 2023
Docker Desktop before 4.6.0 on Windows allows attackers to delete any file through the hyperv...
High
Unreviewed
CVE-2022-31647
was published
Apr 27, 2023
The SolarWinds Platform was susceptible to the Local Privilege Escalation Vulnerability. This...
High
Unreviewed
CVE-2022-47505
was published
Apr 21, 2023
ProTip!
Advisories are also available from the
GraphQL API