Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

13 advisories

Loading
Sensitive data disclosure and manipulation due to unnecessary privileges assignment. The... Critical Unreviewed
CVE-2024-8767 was published Sep 17, 2024
A vulnerability has been identified in SIMATIC BATCH V9.1 (All versions), SIMATIC Information... Critical Unreviewed
CVE-2024-35783 was published Sep 10, 2024
A vulnerability that allows an attacker in possession of the Veeam ONE Agent service account... Critical Unreviewed
CVE-2024-42024 was published Sep 7, 2024
Execution with unnecessary privileges in PerkinElmer ProcessPlus allows an attacker to spawn a... Critical Unreviewed
CVE-2024-6913 was published Jul 22, 2024
A vulnerability in APIML Spring Cloud Gateway which leverages user privileges by unexpected... Critical Unreviewed
CVE-2024-6834 was published Jul 17, 2024
Vulnerability in Spotfire Spotfire Analyst, Spotfire Spotfire Server, Spotfire Spotfire for AWS... Critical Unreviewed
CVE-2024-3330 was published Jun 27, 2024
Toshiba printers use SNMP for configuration. Using the private community, it is possible to... Critical Unreviewed
CVE-2024-27143 was published Jun 14, 2024
An Insecure Direct Object Reference (IDOR) vulnerability exists in the lunary-ai/lunary... Critical Unreviewed
CVE-2024-1626 was published Apr 16, 2024
Execution with Unnecessary Privileges vulnerability in Saphira Saphira Connect allows Remote Code... Critical Unreviewed
CVE-2023-4662 was published Sep 15, 2023
An Execution with Unnecessary Privileges vulnerability in the Schweitzer Engineering... Critical Unreviewed
CVE-2023-31175 was published Aug 31, 2023
Instruments with Illumina Universal Copy Service v1.x and v2.x contain an unnecessary privileges... Critical Unreviewed
CVE-2023-1966 was published Apr 28, 2023
An attacker may be able to execute malicious actions due to the lack of device access protections... Critical Unreviewed
CVE-2022-2634 was published Aug 11, 2022
In Eclipse Openj9 before version 0.29.0, the JVM does not throw IllegalAccessError for... Critical Unreviewed
CVE-2021-41035 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API