Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

107 advisories

Loading
A privilege escalation issue existed in FileMaker Server, potentially exposing sensitive... Moderate Unreviewed
CVE-2023-42954 was published Mar 22, 2024
setuid() does not affect libuv's internal io_uring operations if initialized before the call to... High Unreviewed
CVE-2024-22017 was published Mar 19, 2024
This allows attackers to use a maliciously formed API request to gain access to an API... High Unreviewed
CVE-2024-1222 was published Mar 14, 2024
An issue was discovered in Grandstream GXP14XX 1.0.8.9 and GXP16XX 1.0.7.13, allows remote... High Unreviewed
CVE-2023-50015 was published Mar 9, 2024
A CWE-250 “Execution with Unnecessary Privileges” vulnerability in the embedded Chromium browser ... Moderate Unreviewed
CVE-2023-45592 was published Mar 5, 2024
Hardy Barth cPH2 eCharge Ladestation v1.87.0 and earlier is vulnerable to Execution with... High Unreviewed
CVE-2023-46360 was published Feb 6, 2024
An issue in Notion for macOS version 3.1.0 and before, allows remote attackers to execute... Critical Unreviewed
CVE-2024-23743 was published Jan 28, 2024
Kruise allows leveraging the kruise-daemon pod to list all secrets in the entire cluster Moderate
CVE-2023-30617 was published for github.com/openkruise/kruise (Go) Jan 5, 2024
This privilege escalation vulnerability, if exploited, cloud allow a local OS-authenticated user... High Unreviewed
CVE-2023-33873 was published Nov 15, 2023
This vulnerability allows local attackers to escalate privileges on affected installations of... Moderate Unreviewed
CVE-2023-6006 was published Nov 14, 2023
IBM CICS TX Standard 11.1 and Advanced 10.1, 11.1 performs an operation at a privilege level that... Moderate Unreviewed
CVE-2023-43018 was published Nov 3, 2023
SnapCenter Plugin for VMware vSphere versions 4.6 prior to 4.9 are susceptible to a... Moderate Unreviewed
CVE-2023-27312 was published Oct 12, 2023
SnapCenter versions 3.x and 4.x prior to 4.9 are susceptible to a vulnerability which may allow... High Unreviewed
CVE-2023-27313 was published Oct 12, 2023
kOps privilege escalation vulnerability High
CVE-2023-1943 was published for k8s.io/kops (Go) Oct 12, 2023
A vulnerability was discovered in GitLab CE and EE affecting all versions starting 16.0 prior to... High Unreviewed
CVE-2023-5207 was published Sep 30, 2023
One Identity Password Manager version 5.9.7.1 - An unauthenticated attacker with physical access... Moderate Unreviewed
CVE-2023-4003 was published Sep 27, 2023
Execution with Unnecessary Privileges vulnerability in Saphira Saphira Connect allows Remote Code... Critical Unreviewed
CVE-2023-4662 was published Sep 15, 2023
A Privilege escalation vulnerability exists in Trellix Windows DLP endpoint for windows which... High Unreviewed
CVE-2023-4814 was published Sep 14, 2023
An Execution with Unnecessary Privileges vulnerability in the Schweitzer Engineering... Critical Unreviewed
CVE-2023-31175 was published Aug 31, 2023
A vulnerability in the CLI of Cisco ThousandEyes Enterprise Agent, Virtual Appliance installation... Moderate Unreviewed
CVE-2023-20217 was published Aug 17, 2023
Dell PowerScale OneFS 9.5.x version contain a privilege escalation vulnerability. A low... High Unreviewed
CVE-2023-32486 was published Aug 16, 2023
A vulnerability has been identified in SICAM TOOLBOX II (All versions < V07.10). The affected... High Unreviewed
CVE-2023-38641 was published Aug 8, 2023
In JetBrains IntelliJ IDEA before 2023.2 plugin for Space was requesting excessive permissions High Unreviewed
CVE-2023-39261 was published Jul 26, 2023
A vulnerability in Cisco BroadWorks could allow an authenticated, local attacker to elevate... Moderate Unreviewed
CVE-2023-20210 was published Jul 12, 2023
Improper privilege management in Zoom Rooms before version 5.14.5 may allow an authenticated user... High Unreviewed
CVE-2023-34118 was published Jul 11, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database