GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
49 advisories
Filter by severity
Incorrect Privilege Assignment in GitHub repository phpipam/phpipam prior to 1.4.6.
Moderate
Unreviewed
CVE-2022-1225
was published
Apr 5, 2022
A flaw was found in cifs-utils in versions before 6.13. A user when mounting a krb5 CIFS file...
Moderate
Unreviewed
CVE-2021-20208
was published
May 24, 2022
Multiple vulnerabilities in the Admin portal of Cisco Identity Services Engine (ISE) could allow...
Moderate
Unreviewed
CVE-2021-1412
was published
May 24, 2022
Multiple vulnerabilities in the Admin portal of Cisco Identity Services Engine (ISE) could allow...
Moderate
Unreviewed
CVE-2021-1416
was published
May 24, 2022
It has been found in openshift-enterprise version 3.11 and all openshift-enterprise versions from...
Moderate
Unreviewed
CVE-2020-1708
was published
May 24, 2022
A vulnerability was found in openshift/template-service-broker-operator in all 4.x.x versions...
Moderate
Unreviewed
CVE-2020-1705
was published
May 24, 2022
An insecure modification vulnerability in the /etc/passwd file was found in the openshift/ocp...
Moderate
Unreviewed
CVE-2019-19355
was published
May 24, 2022
An insecure modification vulnerability in the /etc/passwd file was found in the container...
Moderate
Unreviewed
CVE-2019-19351
was published
May 24, 2022
A vulnerability was found in all openshift/mediawiki-apb 4.x.x versions prior to 4.3.0, where an...
Moderate
Unreviewed
CVE-2019-19345
was published
May 24, 2022
A flaw was found during the upgrade of an existing OpenShift Container Platform 3.x cluster....
Moderate
Unreviewed
CVE-2019-14819
was published
May 24, 2022
A vulnerability was found in Click Studios Passwordstate and Passwordstate Browser Extension...
Moderate
Unreviewed
CVE-2022-4613
was published
Dec 19, 2022
When running in Appliance mode, an authenticated attacker assigned the Administrator role may be...
Moderate
Unreviewed
CVE-2024-23976
was published
Feb 14, 2024
A flaw was found in the way samba handled file and directory permissions. An authenticated user...
Moderate
Unreviewed
CVE-2020-14318
was published
May 24, 2022
NVIDIA vGPU software for Windows and Linux contains a vulnerability where unprivileged users...
Moderate
Unreviewed
CVE-2024-0085
was published
Jun 14, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an incorrect privilege assignment...
Moderate
Unreviewed
CVE-2024-37132
was published
Jul 2, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an improper privilege management...
Moderate
Unreviewed
CVE-2024-37134
was published
Jul 2, 2024
An issue in sanluan flipped-aurora gin-vue-admin 2.4.x allows an attacker to escalate privileges...
Moderate
Unreviewed
CVE-2024-31760
was published
Apr 17, 2024
An issue was discovered in SoftMaker Office 2024 / NX before revision 1214 and SoftMaker...
Moderate
Unreviewed
CVE-2023-7270
was published
Jun 27, 2024
A privilege escalation exists in the updater for Plantronics Hub 3.25.1 and below.
Moderate
Unreviewed
CVE-2024-27460
was published
May 14, 2024
An issue was discovered in BeyondTrust Privilege Management for Windows before 24.1. When an low...
Moderate
Unreviewed
CVE-2024-25083
was published
Feb 16, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contains an incorrect privilege assignment...
Moderate
Unreviewed
CVE-2024-39579
was published
Aug 31, 2024
A privilege escalation vulnerability was reported in some Lenovo tablet products that could allow...
Moderate
Unreviewed
CVE-2023-5080
was published
Jan 19, 2024
IBM CICS Transaction Gateway 9.3 could allow a user to transfer or view files due to improper...
Moderate
Unreviewed
CVE-2023-47140
was published
Jan 8, 2024
A remote code execution (RCE) vulnerability in the component /admin/store.php of Emlog Pro before...
Moderate
Unreviewed
CVE-2024-46540
was published
Sep 30, 2024
An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.1 before 15...
Moderate
Unreviewed
CVE-2023-2485
was published
Jun 7, 2023
ProTip!
Advisories are also available from the
GraphQL API