GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,097
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,657
NuGet
638
pip
3,264
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
399 advisories
Filter by severity
A valid XCC user's local account permissions overrides their active directory permissions under...
High
Unreviewed
CVE-2023-29057
was published
Jul 6, 2023
A vulnerability in the client update process of Cisco AnyConnect Secure Mobility Client Software...
High
Unreviewed
CVE-2023-20178
was published
Jun 28, 2023
There is a permission and access control vulnerability in some ZTE AndroidTV STBs. Due to...
High
Unreviewed
CVE-2023-25645
was published
Jun 16, 2023
A local privilege escalation vulnerability in the ThinkPad Hybrid USB-C with USB-A Dock Firmware...
High
Unreviewed
CVE-2022-4569
was published
Jun 5, 2023
Download Center fails to properly validate the file path submitted by a user, An attacker can...
High
Unreviewed
CVE-2023-2749
was published
May 31, 2023
SoLive 1.6.14 thru 1.6.20 for Android has an exposed component that provides a method to modify...
High
Unreviewed
CVE-2023-29731
was published
May 30, 2023
PowerPath for Windows, versions 7.0, 7.1 & 7.2 contains Insecure File and Folder Permissions...
High
Unreviewed
CVE-2023-28079
was published
May 30, 2023
In ebankIT 6, the public endpoints /public/token/Email/generate and /public/token/SMS/generate...
High
Unreviewed
CVE-2023-33291
was published
May 29, 2023
Insecure Permission vulnerability found in Botkind/Siber Systems SyncApp v.19.0.3.0 allows a...
High
Unreviewed
CVE-2023-29838
was published
May 22, 2023
In retrieveAppEntry of NotificationAccessDetails.java, there is a missing permission check. This...
High
Unreviewed
CVE-2023-21107
was published
May 16, 2023
Incorrect default permissions in the Audio Service for some Intel(R) NUC P14E Laptop Element...
High
Unreviewed
CVE-2023-27382
was published
May 10, 2023
Incorrect default permissions in the Intel(R) SCS Add-on software installer for Microsoft SCCM...
High
Unreviewed
CVE-2023-22440
was published
May 10, 2023
Insecure inherited permissions in the HotKey Services for some Intel(R) NUC P14E Laptop Element...
High
Unreviewed
CVE-2022-41687
was published
May 10, 2023
Incorrect default permissions for the Intel(R) HDMI Firmware Update Tool for NUC before version 1...
High
Unreviewed
CVE-2022-40971
was published
May 10, 2023
Incorrect default permissions in the Intel(R) VROC software before version 7.7.6.1003 may allow...
High
Unreviewed
CVE-2022-30338
was published
May 10, 2023
Incorrect default permissions in the software installer for Intel(R) Unite(R) Client software for...
High
Unreviewed
CVE-2022-33963
was published
May 10, 2023
Incorrect default permissions for the Intel(R) NUC Pro Software Suite before version 2.0.0.3 may...
High
Unreviewed
CVE-2022-36391
was published
May 10, 2023
In Nokia One-NDS (aka Network Directory Server) through 20.9, some Sudo permissions can be...
High
Unreviewed
CVE-2022-30759
was published
May 2, 2023
An issue discovered in Obsidian Canvas 1.1.9 allows remote attackers to send desktop...
High
Unreviewed
CVE-2023-27035
was published
May 2, 2023
A directory permissions management vulnerability in Lenovo System Update may allow elevation of...
High
Unreviewed
CVE-2022-4568
was published
May 1, 2023
On versions of Sage 300 2017 - 2022 (6.4.x - 6.9.x) which are setup in a "Windows Peer-to-Peer...
High
Unreviewed
CVE-2022-38583
was published
Apr 28, 2023
Nokia OneNDS 17r2 has Insecure Permissions vulnerability that allows for privilege escalation.
High
Unreviewed
CVE-2022-31244
was published
Apr 25, 2023
An Incorrect Default Permissions vulnerability in Juniper Networks Junos OS Evolved allows a low...
High
Unreviewed
CVE-2023-28966
was published
Apr 18, 2023
Dell Trusted Device Agent, versions prior to 5.3.0, contain(s) an improper installation...
High
Unreviewed
CVE-2023-25542
was published
Apr 6, 2023
CoreDial sipXcom up to and including 21.04 is vulnerable to Insecure Permissions. A user who has...
High
Unreviewed
CVE-2023-25355
was published
Apr 4, 2023
ProTip!
Advisories are also available from the
GraphQL API