Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,750
Erlang
35
GitHub Actions
29
Go
2,323
Maven
5,000+
npm
3,956
NuGet
712
pip
3,739
Pub
12
RubyGems
921
Rust
973
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

78 advisories

Loading
SnapCenter versions 3.x and 4.x prior to 4.9 are susceptible to a vulnerability which may allow... High Unreviewed
CVE-2023-27313 was published Oct 12, 2023
A vulnerability was discovered in GitLab CE and EE affecting all versions starting 16.0 prior to... High Unreviewed
CVE-2023-5207 was published Sep 30, 2023
A Privilege escalation vulnerability exists in Trellix Windows DLP endpoint for windows which... High Unreviewed
CVE-2023-4814 was published Sep 14, 2023
Dell PowerScale OneFS 9.5.x version contain a privilege escalation vulnerability. A low... High Unreviewed
CVE-2023-32486 was published Aug 16, 2023
A vulnerability has been identified in SICAM TOOLBOX II (All versions < V07.10). The affected... High Unreviewed
CVE-2023-38641 was published Aug 8, 2023
In JetBrains IntelliJ IDEA before 2023.2 plugin for Space was requesting excessive permissions High Unreviewed
CVE-2023-39261 was published Jul 26, 2023
Improper privilege management in Zoom Rooms before version 5.14.5 may allow an authenticated user... High Unreviewed
CVE-2023-34118 was published Jul 11, 2023
A vulnerability has been identified in Desigo PXM30-1 (All versions < V02.20.126.11-41), Desigo... High Unreviewed
CVE-2022-40182 was published Jul 6, 2023
NVIDIA DGX A100/A800 contains a vulnerability in SBIOS where an attacker may cause execution... High Unreviewed
CVE-2023-25521 was published Jul 4, 2023
A flaw was found in the QEMU Guest Agent service for Windows. A local unprivileged user may be... High Unreviewed
CVE-2023-0664 was published Mar 29, 2023
Wondershare Dr.Fone v12.9.6 was discovered to contain weak permissions for the service WsDrvInst.... High Unreviewed
CVE-2023-27010 was published Mar 13, 2023
man-db before 2.8.5 on Gentoo allows local users (with access to the man user account) to gain... High Unreviewed
CVE-2018-25078 was published Jan 26, 2023
A remote code execution vulnerability in EdgeRouters (Version 2.0.9-hotfix.4 and earlier) allows... High Unreviewed
CVE-2022-43553 was published Dec 6, 2022
UC-8100A-ME-T System Image: Versions v1.0 to v1.6, UC-2100 System Image: Versions v1.0 to v1.12,... High Unreviewed
CVE-2022-3088 was published Nov 29, 2022
Applications on the tested version of Dominion Voting Systems ImageCast X can execute code with... High Unreviewed
CVE-2022-1744 was published Jun 25, 2022
A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.14.1), RUGGEDCOM... High Unreviewed
CVE-2021-37174 was published May 24, 2022
** UNSUPPORTED WHEN ASSIGNED ** A privilege escalation vulnerability was discovered in Avaya Aura... High Unreviewed
CVE-2021-25651 was published May 24, 2022
** UNSUPPORTED WHEN ASSIGNED ** A privilege escalation vulnerability was discovered in Avaya Aura... High Unreviewed
CVE-2021-25650 was published May 24, 2022
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker... High Unreviewed
CVE-2021-1528 was published May 24, 2022
The software performs an operation at a privilege level higher than the minimum level required,... High Unreviewed
CVE-2021-27454 was published May 24, 2022
A vulnerability has been identified in License Management Utility (LMU) (All versions < V2.4).... High Unreviewed
CVE-2020-10056 was published May 24, 2022
The virConnectGetDomainCapabilities() libvirt API, versions 4.x.x before 4.10.1 and 5.x.x before... High Unreviewed
CVE-2019-10167 was published May 24, 2022
rkt through version 1.30.0 does not isolate processes in containers that are run with `rkt enter`... High Unreviewed
CVE-2019-10145 was published May 24, 2022
rkt through version 1.30.0 does not isolate processes in containers that are run with `rkt enter`... High Unreviewed
CVE-2019-10144 was published May 24, 2022
rkt through version 1.30.0 does not isolate processes in containers that are run with `rkt enter`... High Unreviewed
CVE-2019-10147 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database