Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,631
NuGet
638
pip
3,246
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

3,304 advisories

Loading
An issue was discovered in WithSecure Elements Agent through 23.x for macOS, WithSecure Elements... Moderate Unreviewed
CVE-2024-27357 was published Jul 26, 2024
Insecure Permissions vulnerability in Deepin dde-file-manager 6.0.54 and earlier allows... High Unreviewed
CVE-2023-50700 was published Jul 26, 2024
The Argo CD web terminal session does not handle the revocation of user permissions properly Moderate
CVE-2024-41666 was published for github.com/argoproj/argo-cd/v2 (Go) Jul 24, 2024
ClownandBox crenshaw-dev
pasha-codefresh
AdvaBuild uses a command queue to launch certain operations. An attacker who gains access to the... High Unreviewed
CVE-2020-11640 was published Jul 23, 2024
The improper privilege management vulnerability in the Zyxel WBE660S firmware version 6.70(ACGG.3... Moderate Unreviewed
CVE-2024-1575 was published Jul 23, 2024
On versions before 2.1.4, after a regular user successfully logs in, they can manually make a... Moderate Unreviewed
CVE-2024-34457 was published Jul 22, 2024
Improper privilege management in Yugabyte Platform allows authenticated admin users to escalate... Moderate Unreviewed
CVE-2024-6908 was published Jul 19, 2024
Dell ECS, versions prior to 3.8.1, contain a privilege elevation vulnerability in user management... Moderate Unreviewed
CVE-2024-30473 was published Jul 18, 2024
Philips Vue PACS does not properly assign, modify, track, or check actor privileges, creating an... Moderate Unreviewed
CVE-2023-40223 was published Jul 18, 2024
A flaw exists in Purity//FB whereby a local account is permitted to authenticate to the... Critical Unreviewed
CVE-2023-4976 was published Jul 17, 2024
An improper privilege management vulnerability allowed users to migrate private repositories... Moderate Unreviewed
CVE-2024-5566 was published Jul 17, 2024
The v6.40 release of Rockwell Automation FactoryTalk® Policy Manager CVE-2021-22681 https://www... Moderate Unreviewed
CVE-2024-6325 was published Jul 16, 2024
An exposure of sensitive information vulnerability exists in the Rockwell Automation FactoryTalk®... Low Unreviewed
CVE-2024-6326 was published Jul 16, 2024
Improper privilege management in the installer for some Zoom Workplace Apps and SDKs for Windows... Moderate Unreviewed
CVE-2024-39819 was published Jul 15, 2024
Improper Privilege Management vulnerability in NooTheme Jobmonster allows Privilege Escalation... Critical Unreviewed
CVE-2024-37927 was published Jul 12, 2024
Improper Privilege Management vulnerability in IqbalRony WP User Switch allows Privilege... High Unreviewed
CVE-2024-37560 was published Jul 12, 2024
Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Virtual... High Unreviewed
CVE-2024-6151 was published Jul 10, 2024
Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix... High Unreviewed
CVE-2024-6286 was published Jul 10, 2024
Vulnerability in Jaspersoft JasperReport Servers.This issue affects JasperReport Servers: from 8... High Unreviewed
CVE-2024-3325 was published Jul 10, 2024
In DevmemIntUnexportCtx of devicemem_server.c, there is a possible arbitrary code execution due... High Unreviewed
CVE-2024-34725 was published Jul 9, 2024
In DevmemIntFreeDefBackingPage of devicemem_server.c, there is a possible arbitrary code... Moderate Unreviewed
CVE-2024-31334 was published Jul 9, 2024
In onCreate of multiple files, there is a possible way to trick the user into granting health... High Unreviewed
CVE-2024-31323 was published Jul 9, 2024
In setSkipPrompt of AssociationRequest.java , there is a possible way to establish a companion... High Unreviewed
CVE-2024-31320 was published Jul 9, 2024
In multiple locations, there is a possible permission bypass due to a confused deputy. This could... High Unreviewed
CVE-2023-21114 was published Jul 9, 2024
In multiple locations, there is a possible way to reveal images across users data due to a logic... High Unreviewed
CVE-2024-31325 was published Jul 9, 2024
ProTip! Advisories are also available from the GraphQL API