GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,787
Composer 4,248
Erlang 31
GitHub Actions 21
Go 2,016
Maven 5,202
npm 3,721
NuGet 662
pip 3,400
Pub 11
RubyGems 890
Rust 852
Swift 36

Unreviewed advisories

All unreviewed 236,212

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

359 advisories

Filter by severity

Sort by

Least recently updated

Insecure permission vulnerability in /hrm/leaverequest.php in SourceCodester Human Resource... Moderate Unreviewed

CVE-2024-34223 was published May 14, 2024

Local privilege escalation due to insecure folder permissions. The following products are... Moderate Unreviewed

CVE-2024-34011 was published Apr 29, 2024

In Brocade SANnav before Brocade SANnav v2.31 and v2.3.0a, it was observed that Docker instances... Moderate Unreviewed

CVE-2024-29967 was published Apr 19, 2024

Brocade SANnav OVA before v2.3.1 and v2.3.0a have an insecure file permission setting that makes... Moderate Unreviewed

CVE-2024-29962 was published Apr 19, 2024

An Incorrect Default Permissions vulnerability in Juniper Networks Junos OS and Junos OS Evolved... Moderate Unreviewed

CVE-2024-21615 was published Apr 12, 2024

Permission verification vulnerability in the lock screen module. Impact: Successful exploitation... Moderate Unreviewed

CVE-2023-52717 was published Apr 7, 2024

Dell Grab for Windows, versions up to and including 5.0.4, contain Weak Application Folder... Moderate Unreviewed

CVE-2024-25958 was published Mar 26, 2024

BMC Control-M branches 9.0.20 and 9.0.21 upon user login load all Dynamic Link Libraries (DLL) ... Moderate Unreviewed

CVE-2024-1605 was published Mar 18, 2024

Incorrect default permissions in some Intel(R) CSME installer software before version 2328.5.5.0... Moderate Unreviewed

CVE-2023-28389 was published Mar 14, 2024

Microsoft Defender Security Feature Bypass Vulnerability Moderate Unreviewed

CVE-2024-20671 was published Mar 12, 2024

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Moderate Unreviewed

CVE-2024-23201 was published Mar 8, 2024

A vulnerability in the web-based management interface of ClearPass Policy Manager could allow a... Moderate Unreviewed

CVE-2024-26302 was published Feb 28, 2024

Sensitive information disclosure due to insecure folder permissions. The following products are... Moderate Unreviewed

CVE-2023-48678 was published Feb 27, 2024

The Journal module in Liferay Portal 7.2.0 through 7.4.3.4, and older unsupported versions, and... Moderate Unreviewed

CVE-2024-25605 was published Feb 20, 2024

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition... Moderate Unreviewed

CVE-2024-20921 was published Feb 17, 2024

An insecure default to allow UEFI Shell in EDK2 was left enabled in LXD. This allows an OS... Moderate Unreviewed

CVE-2023-49721 was published Feb 15, 2024

Dell PowerScale OneFS versions 8.2.x through 9.6.0.x contains an incorrect default permissions... Moderate Unreviewed

CVE-2024-22430 was published Feb 1, 2024

A vulnerability has been reported in Suite Setups built with versions prior to InstallShield 2023... Moderate Unreviewed

CVE-2023-29081 was published Jan 26, 2024

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Ignazio Scimone Albo... Moderate Unreviewed

CVE-2024-22301 was published Jan 24, 2024

Ubuntu's pipewire-pulse in snap grants microphone access even when the snap interface for audio... Moderate Unreviewed

CVE-2022-4964 was published Jan 24, 2024

A vulnerability, which was classified as critical, was found in European Chemicals Agency IUCLID... Moderate Unreviewed

CVE-2024-0770 was published Jan 22, 2024

Incorrect default permissions in some Intel Integrated Sensor Hub (ISH) driver for Windows 10 for... Moderate Unreviewed

CVE-2023-29244 was published Jan 19, 2024

Incorrect Default Permissions vulnerability in Hitachi Tuning Manager on Windows (Hitachi Tuning... Moderate Unreviewed

CVE-2023-6457 was published Jan 16, 2024

[PROBLEMTYPE] in [VENDOR] [PRODUCT] [VERSION] on [PLATFORMS] allows [ATTACKER] to [IMPACT]. Moderate Unreviewed

CVE-2022-45793 was published Jan 10, 2024

A feature in LXD (LP#1829071), affects the default configuration of Ubuntu Server which allows... Moderate Unreviewed

CVE-2023-5536 was published Dec 12, 2023

Previous 1 2 3 4 5 … 14 15 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

359 advisories