GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,154
Erlang
30
GitHub Actions
19
Go
1,966
Maven
5,000+
npm
3,694
NuGet
652
pip
3,311
Pub
11
RubyGems
881
Rust
831
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
50 advisories
Filter by severity
Winlogon Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-43583
was published
Oct 8, 2024
A vulnerability was discovered in GitLab CE and EE affecting all versions starting 16.0 prior to...
High
Unreviewed
CVE-2023-5207
was published
Sep 30, 2023
The vCenter Server contains a privilege escalation vulnerability. A malicious actor with network...
High
Unreviewed
CVE-2024-38813
was published
Sep 17, 2024
This allows attackers to use a maliciously formed API request to gain access to an API...
High
Unreviewed
CVE-2024-1222
was published
Mar 14, 2024
Improper privilege management in Zoom Rooms before version 5.14.5 may allow an authenticated user...
High
Unreviewed
CVE-2023-34118
was published
Jul 11, 2023
An untrusted search path vulnerability in the AprolConfigureCCServices of B&R APROL <= R 4.2....
High
Unreviewed
CVE-2024-5622
was published
Aug 29, 2024
An issue was discovered in Grandstream GXP14XX 1.0.8.9 and GXP16XX 1.0.7.13, allows remote...
High
Unreviewed
CVE-2023-50015
was published
Mar 9, 2024
An issue in Canimaan Software LTD ClamXAV v3.1.2 through v3.6.1 and fixed in v.3.6.2 allows a...
High
Unreviewed
CVE-2024-24245
was published
Apr 9, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.4, macOS...
High
Unreviewed
CVE-2024-23299
was published
Jun 10, 2024
setuid() does not affect libuv's internal io_uring operations if initialized before the call to...
High
Unreviewed
CVE-2024-22017
was published
Mar 19, 2024
A vulnerability has been identified in SINEC NMS (All versions < V3.0). The affected application...
High
Unreviewed
CVE-2024-36398
was published
Aug 13, 2024
A local privilege escalation vulnerability in Ivanti Secure Access Client for Windows allows a...
High
Unreviewed
CVE-2023-38042
was published
May 31, 2024
Vulnerability in the Oracle Database RDBMS Security component of Oracle Database Server. ...
High
Unreviewed
CVE-2024-21184
was published
Jul 17, 2024
A vulnerability in the CLI of Cisco AsyncOS for Secure Web Appliance could allow an authenticated...
High
Unreviewed
CVE-2024-20435
was published
Jul 17, 2024
IBM WebSphere Application Server 8.5 and 9.0 could allow a remote authenticated attacker, who has...
High
Unreviewed
CVE-2024-35154
was published
Jul 10, 2024
The Toshiba printers are vulnerable to a Local Privilege Escalation vulnerability. An attacker...
High
Unreviewed
CVE-2024-27147
was published
Jun 14, 2024
Hardy Barth cPH2 eCharge Ladestation v1.87.0 and earlier is vulnerable to Execution with...
High
Unreviewed
CVE-2023-46360
was published
Feb 6, 2024
IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 could allow a local user to obtain...
High
Unreviewed
CVE-2023-30998
was published
Jun 27, 2024
IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 could allow a local user to obtain...
High
Unreviewed
CVE-2023-30997
was published
Jun 27, 2024
IBM i 7.3, 7.4, and 7.5 product IBM TCP/IP Connectivity Utilities for i contains a local...
High
Unreviewed
CVE-2024-31890
was published
Jun 21, 2024
Attackers can then execute malicious files by enabling certain services of the printer via the...
High
Unreviewed
CVE-2024-3498
was published
Jun 14, 2024
NVIDIA vGPU software for Linux contains a vulnerability in the Virtual GPU Manager, where the...
High
Unreviewed
CVE-2024-0084
was published
Jun 14, 2024
IBM Security Verify Access Docker 10.0.0 through 10.0.6 could allow a local user to escalate...
High
Unreviewed
CVE-2024-35142
was published
May 31, 2024
IBM AIX could 7.2, 7.3, VIOS 3.1, and VIOS 4.1 allow a non-privileged local user to exploit a...
High
Unreviewed
CVE-2024-27260
was published
May 16, 2024
Elevation of privilege vulnerability in GE HealthCare EchoPAC products
High
Unreviewed
CVE-2024-27110
was published
May 14, 2024
ProTip!
Advisories are also available from the
GraphQL API