GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
112 advisories
Filter by severity
Dell NativeEdge, version(s) 2.1.0.0, contain(s) an Execution with Unnecessary Privileges...
High
Unreviewed
CVE-2024-47978
was published
Dec 25, 2024
IBM Security Verify Access Docker 10.0.0 through 10.0.6 could allow a local user to escalate...
High
Unreviewed
CVE-2024-35141
was published
Dec 19, 2024
IBM Storage Scale GUI 5.1.9.0 through 5.1.9.6 and 5.2.0.0 through 5.2.1.1
contains a local...
High
Unreviewed
CVE-2024-31891
was published
Dec 14, 2024
The scanner device boots into a kiosk mode by default and opens the Scan2Net interface in a...
Moderate
Unreviewed
CVE-2024-28140
was published
Dec 11, 2024
The www-data user can elevate its privileges because sudo is configured to allow the execution of...
High
Unreviewed
CVE-2024-28139
was published
Dec 11, 2024
IBM Security Verify Access Appliance 10.0.0 through 10.0.8
could allow a locally authenticated...
High
Unreviewed
CVE-2024-49804
was published
Nov 29, 2024
Possible improper input validation Vulnerability
in iManager has been discovered in
OpenText™...
Moderate
Unreviewed
CVE-2021-38118
was published
Nov 22, 2024
A vulnerability in the Incoming Goods Suite allows a user with unprivileged access to the...
High
Unreviewed
CVE-2024-11075
was published
Nov 19, 2024
A vulnerability in system file transfer functions of Cisco SD-WAN vManage Software could...
High
Unreviewed
CVE-2020-26074
was published
Nov 18, 2024
Execution with Unnecessary Privileges, : Improper Protection of Alternate Path vulnerability in...
High
Unreviewed
CVE-2024-8781
was published
Nov 18, 2024
A local privilege escalation vulnerability in the SecuSUITE Server (System Configuration) of...
Moderate
Unreviewed
CVE-2024-51722
was published
Nov 12, 2024
Dell SmartFabric OS10 Software, version(s) 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contain(s) an...
High
Unreviewed
CVE-2024-48837
was published
Nov 12, 2024
Attackers with local access to the medical office computer can
escalate their Windows user...
High
Unreviewed
CVE-2024-50590
was published
Nov 8, 2024
A vulnerability has been identified in InterMesh 7177 Hybrid 2.0 Subscriber (All versions < V8.2...
Moderate
Unreviewed
CVE-2024-47903
was published
Oct 23, 2024
A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone...
Moderate
Unreviewed
CVE-2024-20420
was published
Oct 16, 2024
open-webui Insecure Direct Object Reference (IDOR) vulnerability
Moderate
CVE-2024-7041
was published
for
open-webui
(pip)
Oct 9, 2024
A privilege escalation vulnerability in the Palo Alto Networks GlobalProtect app on Windows...
Moderate
Unreviewed
CVE-2024-9473
was published
Oct 9, 2024
Winlogon Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-43583
was published
Oct 8, 2024
Local active protection service settings manipulation due to unnecessary privileges assignment....
Moderate
Unreviewed
CVE-2024-8903
was published
Sep 23, 2024
The vCenter Server contains a privilege escalation vulnerability. A malicious actor with network...
High
Unreviewed
CVE-2024-38813
was published
Sep 17, 2024
Sensitive data disclosure and manipulation due to unnecessary privileges assignment. The...
Critical
Unreviewed
CVE-2024-8767
was published
Sep 17, 2024
OpenShift Builder has a path traversal, allows command injection in privileged BuildContainer
Moderate
CVE-2024-7387
was published
for
github.com/openshift/builder
(Go)
Sep 17, 2024
A vulnerability has been identified in SIMATIC BATCH V9.1 (All versions), SIMATIC Information...
Critical
Unreviewed
CVE-2024-35783
was published
Sep 10, 2024
A vulnerability that allows an attacker in possession of the Veeam ONE Agent service account...
Critical
Unreviewed
CVE-2024-42024
was published
Sep 7, 2024
Apache Airflow vulnerable to Execution with Unnecessary Privileges
High
CVE-2024-45034
was published
for
apache-airflow
(pip)
Sep 7, 2024
ProTip!
Advisories are also available from the
GraphQL API