GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
797 advisories
Filter by severity
Improper privilege management in the installer for Zoom Desktop Client for macOS before version 5...
Moderate
Unreviewed
CVE-2024-27247
was published
Apr 9, 2024
Improper privilege management in the installer for Zoom Desktop Client for Windows before version...
Moderate
Unreviewed
CVE-2024-24694
was published
Apr 9, 2024
A privilege escalation vulnerability was reported in some Lenovo tablet products that could allow...
Moderate
Unreviewed
CVE-2023-5080
was published
Jan 19, 2024
Local privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix...
Moderate
Unreviewed
CVE-2024-7890
was published
Sep 12, 2024
On versions before 2.1.4, after a regular user successfully logs in, they can manually make a...
Moderate
Unreviewed
CVE-2024-34457
was published
Jul 22, 2024
The v6.40 release of Rockwell Automation FactoryTalk® Policy Manager CVE-2021-22681 https://www...
Moderate
Unreviewed
CVE-2024-6325
was published
Jul 16, 2024
Dell PowerScale InsightIQ, version 5.1, contain an Improper Privilege Management vulnerability. A...
Moderate
Unreviewed
CVE-2024-39574
was published
Sep 10, 2024
Some Honor products are affected by incorrect privilege assignment vulnerability, successful...
Moderate
Unreviewed
CVE-2023-51429
was published
Dec 29, 2023
Improper Privilege Management vulnerability in SAMPA? Holding AKOS allows Collect Data as...
Moderate
Unreviewed
CVE-2024-4259
was published
Sep 3, 2024
Permission control vulnerability in the window management module. Successful exploitation of this...
Moderate
Unreviewed
CVE-2023-46756
was published
Nov 8, 2023
Improper Privilege Management vulnerability in Menulux Information Technologies Managment Portal...
Moderate
Unreviewed
CVE-2024-4428
was published
Aug 29, 2024
there is a possible permanent DoS or way for the modem to boot unverified firmware due to a logic...
Moderate
Unreviewed
CVE-2023-48406
was published
Dec 8, 2023
Incorrect Privilege Assignment in M-Files Web (Classic) in M-Files before 22.8.11691.0 allows low...
Moderate
Unreviewed
CVE-2022-4264
was published
Dec 9, 2022
Incorrect privilege assignment in M-Files Server versions before 22.3.11164.0 and before 22.3...
Moderate
Unreviewed
CVE-2022-1606
was published
Nov 30, 2022
Permission Bypass allowing attackers to disable HDCP 2.2 encryption by not completing the HDCP...
Moderate
Unreviewed
CVE-2024-32918
was published
Jun 13, 2024
Insecure inherited permissions in some Intel(R) NUC Pro Software Suite installation software...
Moderate
Unreviewed
CVE-2022-41700
was published
Nov 14, 2023
Improper privilege management in the installer for Zoom Workplace Desktop App for macOS, Zoom...
Moderate
Unreviewed
CVE-2024-42440
was published
Aug 14, 2024
Improper privilege management in the installer for Zoom Workplace Desktop App for macOS, Zoom...
Moderate
Unreviewed
CVE-2024-42441
was published
Aug 14, 2024
Improper Privilege Management in Sprecher Automation SPRECON-E below version 8.71j allows a...
Moderate
Unreviewed
CVE-2024-6758
was published
Aug 12, 2024
An Improper access control vulnerability was found in Avaya Aura System Manager which could allow...
Moderate
Unreviewed
CVE-2024-7480
was published
Aug 8, 2024
Improper privilege management in Yugabyte Platform allows authenticated admin users to escalate...
Moderate
Unreviewed
CVE-2024-6908
was published
Jul 19, 2024
A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows...
Moderate
Unreviewed
CVE-2024-5909
was published
Jun 12, 2024
A privilege escalation (PE) vulnerability in the Palo Alto Networks Cortex XDR agent on Windows...
Moderate
Unreviewed
CVE-2024-5907
was published
Jun 12, 2024
Philips Vue PACS does not properly assign, modify, track, or check actor privileges, creating an...
Moderate
Unreviewed
CVE-2023-40223
was published
Jul 18, 2024
Privilege escalation vulnerability identified in OpenText ArcSight Intelligence.
Moderate
Unreviewed
CVE-2024-6359
was published
Aug 6, 2024
ProTip!
Advisories are also available from the
GraphQL API