GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,381
Composer 4,822
Erlang 36
GitHub Actions 32
Go 2,413
Maven 5,809
npm 4,052
NuGet 723
pip 3,844
Pub 12
RubyGems 933
Rust 1,005
Swift 38

Unreviewed advisories

All unreviewed 264,799

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

371 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability in the ConfD CLI and the Cisco Crosswork Network Services Orchestrator CLI could... High Unreviewed

CVE-2024-20389 was published May 16, 2024

Insecure Permission vulnerability in TotalAV v.6.0.740 allows a local attacker to escalate... High Unreviewed

CVE-2024-31771 was published May 14, 2024

A privilege escalation exists in the updater for Plantronics Hub 3.25.1 and below. Moderate Unreviewed

CVE-2024-27460 was published May 14, 2024

IBM AIX's Unix domain (AIX 7.2, 7.3, VIOS 3.1, and VIOS 4.1) datagram socket implementation could... High Unreviewed

CVE-2024-27273 was published May 7, 2024

In Extreme XOS through 22.6.1.4, a read-only user can escalate privileges to root via a crafted... High Unreviewed

CVE-2024-27453 was published May 3, 2024

Various software builds for the following TCL devices (30Z, A3X, 20XE, 10L) leak the device IMEI... High Unreviewed

CVE-2023-38298 was published Apr 22, 2024

An issue in sanluan flipped-aurora gin-vue-admin 2.4.x allows an attacker to escalate privileges... Moderate Unreviewed

CVE-2024-31760 was published Apr 17, 2024

A vulnerability in the SSH client feature of Cisco IOS XR Software for Cisco 8000 Series Routers... High Unreviewed

CVE-2024-20320 was published Mar 13, 2024

This issue was addressed by removing the vulnerable code. This issue is fixed in tvOS 17.4, iOS... High Unreviewed

CVE-2024-23288 was published Mar 8, 2024

An issue was discovered in Couchbase Server before 7.2.x before 7.2.4. otpCookie is shown with... High Unreviewed

CVE-2023-50437 was published Feb 29, 2024

An issue has been discovered in GitLab EE affecting all versions starting from 16.5 before 16.7.6... Moderate Unreviewed

CVE-2023-6477 was published Feb 22, 2024

An issue was discovered in BeyondTrust Privilege Management for Windows before 24.1. When an low... Moderate Unreviewed

CVE-2024-25083 was published Feb 16, 2024

In createFromParcel of UsbConfiguration.java, there is a possible background activity launch (BAL... High Unreviewed

CVE-2023-40109 was published Feb 16, 2024

When running in Appliance mode, an authenticated attacker assigned the Administrator role may be... Moderate Unreviewed

CVE-2024-23976 was published Feb 14, 2024

Incorrect Privilege Assignment vulnerability in Mitsubishi Electric Corporation MELSEC iQ-R... Moderate Unreviewed

CVE-2023-6815 was published Feb 13, 2024

A privilege escalation vulnerability was reported in some Lenovo tablet products that could allow... Moderate Unreviewed

CVE-2023-5080 was published Jan 19, 2024

Improper access control in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom... High Unreviewed

CVE-2023-49647 was published Jan 13, 2024

IBM CICS Transaction Gateway 9.3 could allow a user to transfer or view files due to improper... Moderate Unreviewed

CVE-2023-47140 was published Jan 8, 2024

The FACSChorus software does not properly assign data access privileges for operating system user... Low Unreviewed

CVE-2023-29066 was published Nov 28, 2023

Incorrect Privilege Assignment vulnerability in opentext Fortify ScanCentral DAST. The... High Unreviewed

CVE-2023-5913 was published Nov 8, 2023

The BAN Users plugin for WordPress is vulnerable to privilege escalation in versions up to, and... High Unreviewed

CVE-2023-4153 was published Sep 13, 2023

SearchBlox before Version 9.2.1 is vulnerable to Privileged Escalation-Lower user is able to... High Unreviewed

CVE-2020-10129 was published Sep 6, 2023

In startActivityInner of ActivityStarter.java, there is a possible way to launch an activity into... High Unreviewed

CVE-2023-21269 was published Aug 14, 2023

Parcel mismatch in AuthenticationConfig prior to SMR Aug-2023 Release 1 allows local attacker to... High Unreviewed

CVE-2023-30691 was published Aug 10, 2023

Improper privilege management vulnerability in MMIGroup prior to SMR Aug-2023 Release 1 allows... High Unreviewed

CVE-2023-30680 was published Aug 10, 2023

Previous 1 2 … 11 12 13 14 15 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

371 advisories