GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
40 advisories
Filter by severity
Insecure inherited permissions for some Intel(R) DSA software before version 24.3.26.8 may allow...
Moderate
Unreviewed
CVE-2024-36294
was published
Nov 13, 2024
Insecure inherited permissions for some Intel(R) CIP software before version 2.4.10852 may allow...
Moderate
Unreviewed
CVE-2024-36276
was published
Nov 13, 2024
Insecure inherited permissions in some Intel(R) Ethernet tools and driver install software may...
High
Unreviewed
CVE-2023-33870
was published
Oct 25, 2024
Improper Preservation of Permissions in xxl-job
High
CVE-2024-42681
was published
for
com.xuxueli:xxl-job-core
(Maven)
Aug 15, 2024
Insecure inherited permissions in some Intel(R) HID Event Filter software installers before...
Moderate
Unreviewed
CVE-2024-25561
was published
Aug 14, 2024
Insecure inherited permissions in some Flexlm License Daemons for Intel(R) FPGA software before...
Moderate
Unreviewed
CVE-2024-23908
was published
Aug 14, 2024
Pulp incorrectly assigns RBAC permissions in tasks that create objects
High
CVE-2024-7143
was published
for
pulpcore
(pip)
Aug 7, 2024
Insecure permissions in contour v1.28.3 allows attackers to access sensitive data and escalate...
Critical
Unreviewed
CVE-2024-36539
was published
Jul 24, 2024
Apache Airflow has DAG Author Code Execution possibility in airflow-scheduler
High
CVE-2024-39877
was published
for
apache-airflow
(pip)
Jul 17, 2024
Firefox Android allowed immediate interaction with permission prompts. This could be used for...
High
Unreviewed
CVE-2024-6605
was published
Jul 9, 2024
Insecure permissions in the AdminController.AjaxSave() method of PPGo_Jobs v2.8.0 allows...
Moderate
Unreviewed
CVE-2024-36691
was published
Jun 12, 2024
This issue was addressed with improved permissions checking. This issue is fixed in macOS Sonoma...
High
Unreviewed
CVE-2024-27848
was published
Jun 10, 2024
Insecure inherited permissions in some Intel(R) XTU software before version 7.14.0.15 may allow...
Moderate
Unreviewed
CVE-2024-21835
was published
May 16, 2024
Insecure inherited permissions in Intel(R) Power Gadget software for Windows all versions may...
Moderate
Unreviewed
CVE-2023-45736
was published
May 16, 2024
The issue was addressed with improved checks. This issue is fixed in iOS 17.5 and iPadOS 17.5,...
High
Unreviewed
CVE-2024-27834
was published
May 14, 2024
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Sonoma 14.5....
High
Unreviewed
CVE-2024-27822
was published
May 14, 2024
This issue was addressed with improved checks This issue is fixed in iOS 17.5 and iPadOS 17.5,...
High
Unreviewed
CVE-2024-27847
was published
May 14, 2024
A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing...
High
Unreviewed
CVE-2024-27825
was published
May 14, 2024
Insecure Permissions vulnerability in e-trust Horacius 1.0, 1.1, and 1.2 allows a local attacker...
High
Unreviewed
CVE-2024-29417
was published
May 3, 2024
Insecure Permissions vulnerability in Wondershare Filmora v.13.0.51 allows a local attacker to...
High
Unreviewed
CVE-2024-26574
was published
Apr 8, 2024
Macro Expert through 4.9.4 allows BUILTIN\Users:(OI)(CI)(M) access to the "%PROGRAMFILES(X86)%...
High
Unreviewed
CVE-2024-27674
was published
Apr 3, 2024
Insecure inherited permissions in some Intel HID Event Filter drivers for Windows 10 for some...
Moderate
Unreviewed
CVE-2023-38541
was published
Jan 19, 2024
The FACSChorus software database can be accessed directly with the privileges of the currently...
Moderate
Unreviewed
CVE-2023-29065
was published
Nov 28, 2023
Insecure inherited permissions in some Intel(R) Simics Simulator software before version 1.7.2...
Moderate
Unreviewed
CVE-2023-34314
was published
Nov 14, 2023
Insecure inherited permissions in some Intel Rapid Storage Technology software before version 16...
Moderate
Unreviewed
CVE-2023-39230
was published
Nov 14, 2023
ProTip!
Advisories are also available from the
GraphQL API