GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
23 advisories
Filter by severity
Incorrect permissions in Ivanti Secure Access Client before 22.7R4 allows a local authenticated...
High
Unreviewed
CVE-2024-7571
was published
Nov 12, 2024
Incorrect permissions in Ivanti Secure Access Client before version 22.7R4 allows a local...
High
Unreviewed
CVE-2024-9842
was published
Nov 12, 2024
Improper authorization in Ivanti Secure Access Client before version 22.7R3 allows a local...
High
Unreviewed
CVE-2024-8539
was published
Nov 12, 2024
Excessive binary privileges in Ivanti Connect Secure which affects versions 22.4R2 through 22.7R2...
High
Unreviewed
CVE-2024-47906
was published
Nov 12, 2024
Rancher vulnerable to Privilege Escalation via manipulation of Secrets
Critical
CVE-2023-22647
was published
for
github.com/rancher/rancher
(Go)
Jun 6, 2023
A privilege escalation issue has been discovered in GitLab EE affecting all versions starting...
Moderate
Unreviewed
CVE-2024-8631
was published
Sep 12, 2024
A vulnerability in Cisco NX-OS Software could allow an authenticated, local attacker with...
Moderate
Unreviewed
CVE-2024-20411
was published
Aug 28, 2024
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1)....
High
Unreviewed
CVE-2024-39866
was published
Jul 9, 2024
A sandboxing issue in Odoo Community 15.0 and Odoo Enterprise 15.0 allows authenticated...
High
Unreviewed
CVE-2021-44547
was published
Apr 25, 2023
A sandboxing issue in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows...
High
Unreviewed
CVE-2021-44476
was published
Apr 25, 2023
A sandboxing issue in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows...
High
Unreviewed
CVE-2021-23186
was published
Apr 25, 2023
A sandboxing issue in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows...
High
Unreviewed
CVE-2021-23166
was published
Apr 25, 2023
Keycloak code execution via UMA policy abuse
High
CVE-2019-10169
was published
for
org.keycloak:keycloak-authz-client
(Maven)
May 24, 2022
A flaw within the SonicWall NetExtender Pre-Logon feature enables an unauthorized user to gain...
High
Unreviewed
CVE-2023-44218
was published
Oct 3, 2023
Dell PowerScale OneFS, versions 8.2.2.x-9.5.0.x, contains an improper privilege management...
High
Unreviewed
CVE-2023-32457
was published
Aug 29, 2023
Debug tool in Secomea SiteManager allows logged-in administrator to modify system state in an...
Moderate
Unreviewed
CVE-2022-38124
was published
Dec 13, 2022
A flaw was found in the grub2-set-bootflag utility of grub2. A local attacker could run this...
Moderate
Unreviewed
CVE-2019-14865
was published
May 24, 2022
Dell Command | Monitor, versions prior to 10.9, contain an arbitrary folder deletion...
Moderate
Unreviewed
CVE-2023-28049
was published
Feb 6, 2024
The application suffers from a privilege escalation vulnerability. A
user with read...
High
Unreviewed
CVE-2023-41966
was published
Oct 26, 2023
Pimcore Privilege Defined With Unsafe Actions vulnerability
Moderate
CVE-2023-2983
was published
for
pimcore/pimcore
(Composer)
Jun 6, 2023
When running in Appliance mode, an authenticated user assigned the Administrator role may be...
High
Unreviewed
CVE-2023-43746
was published
Oct 10, 2023
SAP Authenticator for Android - version 1.3.0, allows the screen to be captured, if an authorized...
Moderate
Unreviewed
CVE-2023-27895
was published
Mar 14, 2023
Privilege Defined With Unsafe Actions in Keycloak
High
CVE-2019-10170
was published
for
org.keycloak:keycloak-core
(Maven)
Oct 21, 2021
ProTip!
Advisories are also available from the
GraphQL API