Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,285
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,741
NuGet
668
pip
3,422
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

60 advisories

Loading
Dell NativeEdge, version(s) 2.1.0.0, contain(s) an Execution with Unnecessary Privileges... High Unreviewed
CVE-2024-47978 was published Dec 25, 2024
IBM Security Verify Access Docker 10.0.0 through 10.0.6 could allow a local user to escalate... High Unreviewed
CVE-2024-35141 was published Dec 19, 2024
IBM Storage Scale GUI 5.1.9.0 through 5.1.9.6 and 5.2.0.0 through 5.2.1.1 contains a local... High Unreviewed
CVE-2024-31891 was published Dec 14, 2024
The www-data user can elevate its privileges because sudo is configured to allow the execution of... High Unreviewed
CVE-2024-28139 was published Dec 11, 2024
IBM Security Verify Access Appliance 10.0.0 through 10.0.8 could allow a locally authenticated... High Unreviewed
CVE-2024-49804 was published Nov 29, 2024
A vulnerability in the Incoming Goods Suite allows a user with unprivileged access to the... High Unreviewed
CVE-2024-11075 was published Nov 19, 2024
A vulnerability in system file transfer functions of Cisco SD-WAN vManage Software could... High Unreviewed
CVE-2020-26074 was published Nov 18, 2024
Execution with Unnecessary Privileges, : Improper Protection of Alternate Path vulnerability in... High Unreviewed
CVE-2024-8781 was published Nov 18, 2024
Dell SmartFabric OS10 Software, version(s) 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contain(s) an... High Unreviewed
CVE-2024-48837 was published Nov 12, 2024
Attackers with local access to the medical office computer can escalate their Windows user... High Unreviewed
CVE-2024-50590 was published Nov 8, 2024
Winlogon Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-43583 was published Oct 8, 2024
A vulnerability was discovered in GitLab CE and EE affecting all versions starting 16.0 prior to... High Unreviewed
CVE-2023-5207 was published Sep 30, 2023
The vCenter Server contains a privilege escalation vulnerability. A malicious actor with network... High Unreviewed
CVE-2024-38813 was published Sep 17, 2024
This allows attackers to use a maliciously formed API request to gain access to an API... High Unreviewed
CVE-2024-1222 was published Mar 14, 2024
Improper privilege management in Zoom Rooms before version 5.14.5 may allow an authenticated user... High Unreviewed
CVE-2023-34118 was published Jul 11, 2023
An untrusted search path vulnerability in the AprolConfigureCCServices of B&R APROL <= R 4.2.... High Unreviewed
CVE-2024-5622 was published Aug 29, 2024
An issue was discovered in Grandstream GXP14XX 1.0.8.9 and GXP16XX 1.0.7.13, allows remote... High Unreviewed
CVE-2023-50015 was published Mar 9, 2024
An issue in Canimaan Software LTD ClamXAV v3.1.2 through v3.6.1 and fixed in v.3.6.2 allows a... High Unreviewed
CVE-2024-24245 was published Apr 9, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.4, macOS... High Unreviewed
CVE-2024-23299 was published Jun 10, 2024
setuid() does not affect libuv's internal io_uring operations if initialized before the call to... High Unreviewed
CVE-2024-22017 was published Mar 19, 2024
A vulnerability has been identified in SINEC NMS (All versions < V3.0). The affected application... High Unreviewed
CVE-2024-36398 was published Aug 13, 2024
A local privilege escalation vulnerability in Ivanti Secure Access Client for Windows allows a... High Unreviewed
CVE-2023-38042 was published May 31, 2024
Vulnerability in the Oracle Database RDBMS Security component of Oracle Database Server. ... High Unreviewed
CVE-2024-21184 was published Jul 17, 2024
A vulnerability in the CLI of Cisco AsyncOS for Secure Web Appliance could allow an authenticated... High Unreviewed
CVE-2024-20435 was published Jul 17, 2024
IBM WebSphere Application Server 8.5 and 9.0 could allow a remote authenticated attacker, who has... High Unreviewed
CVE-2024-35154 was published Jul 10, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database