GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
22 advisories
Filter by severity
Software installed and run as a non-privileged user may conduct improper GPU system calls to...
High
Unreviewed
CVE-2024-43702
was published
Nov 30, 2024
Certain switch models from PLANET Technology have an SSH service that improperly handles...
High
Unreviewed
CVE-2024-8451
was published
Sep 30, 2024
Improper handling of insufficient permissions or privileges vulnerability exists in ajaxterm...
High
Unreviewed
CVE-2024-36451
was published
Jul 10, 2024
Lack of privilege checking when processing a redaction in Conduit versions v0.6.0 and lower,...
High
Unreviewed
CVE-2024-6302
was published
Jun 25, 2024
A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in...
High
Unreviewed
CVE-2024-27837
was published
May 14, 2024
In onCreate of WifiDialogActivity.java, there is a possible way to bypass the...
High
Unreviewed
CVE-2024-23704
was published
May 7, 2024
In Foxit PDF Reader and Editor before 2024.1, Local Privilege Escalation could occur during...
High
Unreviewed
CVE-2024-32488
was published
Apr 15, 2024
Mautic Sensitive Data Exposure due to inadequate user permission settings
High
CVE-2022-25776
was published
for
mautic/core
(Composer)
Apr 12, 2024
Vulnerability of package name verification being bypassed in the HwIms module.
Impact: Successful...
High
Unreviewed
CVE-2023-52537
was published
Apr 8, 2024
Vulnerability of insufficient permission verification in the app management module.
Impact:...
High
Unreviewed
CVE-2024-30418
was published
Apr 7, 2024
there is a possible way to bypass due to a logic error in the code. This could lead to local...
High
Unreviewed
CVE-2024-29748
was published
Apr 5, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.6.3, macOS...
High
Unreviewed
CVE-2023-42931
was published
Mar 28, 2024
In some rare cases, there is a password type validation missing in Revert Password check and for...
High
Unreviewed
CVE-2023-41972
was published
Mar 26, 2024
An issue was discovered in Elspec G5 digital fault recorder versions 1.1.4.15 and before....
High
Unreviewed
CVE-2024-22078
was published
Mar 20, 2024
Dell Power Manager, versions prior to 3.14, contain an Improper Authorization vulnerability in...
High
Unreviewed
CVE-2023-25543
was published
Feb 6, 2024
Quarkus Improper Handling of Insufficient Permissions or Privileges and Improper Handling of Exceptional Conditions vulnerability
High
CVE-2023-6267
was published
for
io.quarkus.resteasy.reactive:resteasy-reactive
(Maven)
Jan 25, 2024
Improper privilege management in Zoom Rooms for macOS before version 5.16.0 may allow an...
High
Unreviewed
CVE-2023-43591
was published
Nov 15, 2023
Missing access permissions checks in M-Files Client before 23.5.12598.0 allows elevation of...
High
Unreviewed
CVE-2023-2480
was published
May 25, 2023
NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in a kernel mode layer...
High
Unreviewed
CVE-2023-0181
was published
Apr 1, 2023
Duplicate Advisory: Apiman has insufficient checks for read permissions
High
GHSA-54r5-wr8x-x5v3
was published
for
io.apiman:apiman-manager-api-rest-impl
(Maven)
Dec 20, 2022
•
withdrawn
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V2.0). Due to...
High
Unreviewed
CVE-2019-6570
was published
May 13, 2022
Improper privilege handling in Apache Accumulo
High
CVE-2020-17533
was published
for
org.apache.accumulo:accumulo-master
(Maven)
Feb 9, 2022
ProTip!
Advisories are also available from the
GraphQL API