GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
13 advisories
Filter by severity
In getLocationCache of GeoLocation.java, there is a possible way to send a mock location during...
High
Unreviewed
CVE-2023-35692
was published
Jul 14, 2023
Internal browser event interfaces were exposed to web content when privileged EventHandler...
High
Unreviewed
CVE-2024-8382
was published
Sep 3, 2024
The vCenter Server contains a privilege escalation vulnerability. A malicious actor with network...
High
Unreviewed
CVE-2024-38813
was published
Sep 17, 2024
Ignite Realtime Openfire privilege escalation vulnerability
High
CVE-2024-25420
was published
for
org.igniterealtime.openfire:xmppserver
(Maven)
Mar 26, 2024
For migration as well as to work around kernels unaware of L1TF (see
XSA-273), PV guests may be...
High
Unreviewed
CVE-2023-34322
was published
Jan 5, 2024
Before correction, the copy_file_range system call checked only for the CAP_READ and CAP_WRITE...
High
Unreviewed
CVE-2023-5369
was published
Oct 4, 2023
An issue was discovered in HCC Embedded InterNiche NicheStack through 4.3. The tfshnd():tftpsrv.c...
High
Unreviewed
CVE-2021-36762
was published
May 24, 2022
libuv before 0.10.34 does not properly drop group privileges, which allows context-dependent...
High
Unreviewed
CVE-2015-0278
was published
May 14, 2022
In Zsh before 5.8, attackers able to execute commands can regain privileges dropped by the --no...
High
Unreviewed
CVE-2019-20044
was published
May 24, 2022
Improper revalidation of permissions in Nextcloud Server prior to 14.0.0, 13.0.6 and 12.0.11 lead...
High
Unreviewed
CVE-2018-16466
was published
May 13, 2022
An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector...
High
Unreviewed
CVE-2018-8599
was published
May 13, 2022
A flaw was found in the QEMU virtio-fs shared file system daemon (virtiofsd) implementation. This...
High
Unreviewed
CVE-2022-0358
was published
Aug 29, 2022
An issue was discovered in disable_priv_mode in shell.c in GNU Bash through 5.0 patch 11. By...
High
Unreviewed
CVE-2019-18276
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API