Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

866 advisories

Loading
Swissphone DiCal-RED 4009 devices allow a remote attacker to gain read access to almost the whole... High Unreviewed
CVE-2024-36443 was published Aug 22, 2024
Improper Access Controls allows backend users to overwrite their username when disallowed. High Unreviewed
CVE-2024-27187 was published Aug 20, 2024
Hargal - CWE-284: Improper Access Control High Unreviewed
CVE-2024-42334 was published Aug 20, 2024
Improper access control in some Intel(R) UEFI Integrator Tools on Aptio V for Intel(R) NUC may... High Unreviewed
CVE-2024-26022 was published Aug 14, 2024
improper access control in firmware for some Intel(R) FPGA products before version 24.1 may allow... High Unreviewed
CVE-2024-25576 was published Aug 14, 2024
Windows Update Stack Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38163 was published Aug 14, 2024
Azure CycleCloud Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38195 was published Aug 13, 2024
Azure Connected Machine Agent Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38162 was published Aug 13, 2024
Insufficient validation of the Input Output Control (IOCTL) input buffer in AMD μProf may allow... High Unreviewed
CVE-2023-31341 was published Aug 13, 2024
A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions ... High Unreviewed
CVE-2024-41905 was published Aug 13, 2024
A vulnerability was found in OpenShift AI that allows for authentication bypass and privilege... High Unreviewed
CVE-2024-7557 was published Aug 12, 2024
Improper access control vulnerability affecting Vonets industrial wifi bridge relays and wifi... High Unreviewed
CVE-2024-29082 was published Aug 12, 2024
Summary Microsoft was notified that an elevation of privilege vulnerability exists in Windows... High Unreviewed
CVE-2024-38202 was published Aug 8, 2024
An issue in the Hardware info module of IT Solutions Enjay CRM OS v1.0 allows attackers to escape... High Unreviewed
CVE-2024-41309 was published Aug 7, 2024
An issue in the Ping feature of IT Solutions Enjay CRM OS v1.0 allows attackers to escape the... High Unreviewed
CVE-2024-41308 was published Aug 7, 2024
An Incorrect Access Control vulnerability was found in /smsa/add_subject.php and /smsa... High Unreviewed
CVE-2024-41248 was published Aug 7, 2024
An Incorrect Access Control vulnerability was found in /smsa/view_subject.php in Kashipara... High Unreviewed
CVE-2024-41249 was published Aug 7, 2024
Incorrect validation of files loaded from a local untrusted directory may allow local privilege... High Unreviewed
CVE-2024-7553 was published Aug 7, 2024
An issue in UAB Lexita PanteraCRM CMS v.401.152 and Patera CRM CMS v.402.072 allows a remote... High Unreviewed
CVE-2024-40531 was published Aug 5, 2024
Memory corruption can occur when arbitrary user-space app gains kernel level privilege to modify... High Unreviewed
CVE-2024-33027 was published Aug 5, 2024
An Incorrect Access Control vulnerability in "/admin/programm/<program_id>/export/statistics" in... High Unreviewed
CVE-2024-41518 was published Aug 2, 2024
Insecure permissions in kuma v2.7.0 allows attackers to access sensitive data and escalate... High Unreviewed
CVE-2024-36542 was published Jul 25, 2024
Insecure permissions in cert-manager v1.14.4 allows attackers to access sensitive data and... High Unreviewed
CVE-2024-36537 was published Jul 24, 2024
Vulnerability in the Oracle Process Manufacturing Product Development product of Oracle E... High Unreviewed
CVE-2024-21153 was published Jul 17, 2024
An issue was found in upload.php on the Ruijie EG-2000 series gateway. A parameter passed to the... High Unreviewed
CVE-2019-16640 was published Jul 16, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database