GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 19,850
Composer 4,039
Erlang 29
GitHub Actions 18
Go 1,864
Maven 5,066
npm 3,587
NuGet 636
pip 3,176
Pub 10
RubyGems 852
Rust 805
Swift 34

Unreviewed advisories

All unreviewed 226,342

CC-BY-4.0 License

Language support

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

996 advisories

Filter by severity

Sort by

Least recently updated

IBM App Connect Enterprise Certified Container 5.0, 7.1, 7.2, 8.0, 8.1, 8.2, 9.0, 9.1, 9.2, 10.0,... Moderate Unreviewed

CVE-2022-43915 was published Aug 24, 2024

A vulnerability exists in the Rockwell Automation ThinManager® ThinServer that allows a threat... Moderate Unreviewed

CVE-2024-7986 was published Aug 23, 2024

VIPRE Advanced Security Incorrect Permission Assignment Local Privilege Escalation Vulnerability.... High Unreviewed

CVE-2024-5930 was published Aug 21, 2024

CVE-2024-7513 IMPACT A code execution vulnerability exists in the affected product. The... High Unreviewed

CVE-2024-7513 was published Aug 14, 2024

A privilege escalation (PE) vulnerability in the Palo Alto Networks GlobalProtect app on Windows... Moderate Unreviewed

CVE-2024-5915 was published Aug 14, 2024

In Ocean Data Systems Dream Report, an incorrect permission vulnerability could allow a local... High Unreviewed

CVE-2024-6619 was published Aug 13, 2024

Nagios NDOUtils before 2.1.4 allows privilege escalation from nagios to root because certain... High Unreviewed

CVE-2024-43199 was published Aug 7, 2024

A “CWE-732: Incorrect Permission Assignment for Critical Resource” in the ThermoscanIP... High Unreviewed

CVE-2024-31202 was published Jul 31, 2024

IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 could... Low Unreviewed

CVE-2022-33167 was published Jul 30, 2024

This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to missing HTTPOnly flag for... Moderate Unreviewed

CVE-2024-41685 was published Jul 26, 2024

Incorrect Permission Assignment for Critical Resource vulnerability in PruvaSoft Informatics... Critical Unreviewed

CVE-2024-5618 was published Jul 18, 2024

A privilege escalation vulnerability exists in the affected products which could allow a... High Unreviewed

CVE-2024-6435 was published Jul 16, 2024

Improper permission control in the mobile application (com.android.server.telecom) may lead to... Unknown Unreviewed

CVE-2024-6780 was published Jul 16, 2024

A vulnerability in the boot process of Cisco IOS XR Software could allow an authenticated, local... Moderate Unreviewed

CVE-2024-20456 was published Jul 10, 2024

Incorrect permissions on the Checkmk Windows Agent's data directory in Checkmk < 2.3.0p8, < 2.2... High Unreviewed

CVE-2024-28827 was published Jul 10, 2024

A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1).... Moderate Unreviewed

CVE-2024-39875 was published Jul 9, 2024

Improper permission settings for mobile applications (com.transsion.carlcare) may lead to user... Critical Unreviewed

CVE-2024-5163 was published Jun 17, 2024

A privilege escalation vulnerability exists in the affected product. The vulnerability allows low... Unknown Unreviewed

CVE-2024-37369 was published Jun 14, 2024

Insecure permissions in Linksys Velop WiFi 5 (WHW01v1) 1.1.13.202617 allows attackers to escalate... High Unreviewed

CVE-2024-36821 was published Jun 11, 2024

The PowerPack Pro for Elementor plugin for WordPress is vulnerable to privilege escalation in all... High Unreviewed

CVE-2024-3668 was published Jun 8, 2024

A10 Thunder ADC Incorrect Permission Assignment Local Privilege Escalation Vulnerability. This... High Unreviewed

CVE-2024-30369 was published Jun 6, 2024

Insecure inherited permissions in some Intel(R) XTU software before version 7.14.0.15 may allow... Moderate Unreviewed

CVE-2024-21835 was published May 16, 2024

On Unix systems (Linux, MacOS), Arc uses a temporary file with unsafe privileges. By tampering... High Unreviewed

CVE-2023-5936 was published May 15, 2024

On Windows systems, the Arc configuration files resulted to be world-readable. This can lead... Low Unreviewed

CVE-2023-5937 was published May 15, 2024

Non privileged access to critical file vulnerability in GE HealthCare EchoPAC products Moderate Unreviewed

CVE-2024-27108 was published May 14, 2024

Previous 1 2 3 4 5 … 39 40 Next

ProTip! Advisories are also available from the GraphQL API

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

996 advisories