GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,763
Composer 4,750
Erlang 35
GitHub Actions 29
Go 2,323
Maven 5,608
npm 3,956
NuGet 712
pip 3,739
Pub 12
RubyGems 921
Rust 973
Swift 38

Unreviewed advisories

All unreviewed 258,320

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

147 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

In Eclipse Openj9 before version 0.29.0, the JVM does not throw IllegalAccessError for... Critical Unreviewed

CVE-2021-41035 was published May 24, 2022

IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 could allow a local user to obtain... High Unreviewed

CVE-2023-30997 was published Jun 27, 2024

IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 could allow a local user to obtain... High Unreviewed

CVE-2023-30998 was published Jun 27, 2024

Dell PowerScale OneFS versions 8.2.2.x through 9.7.0.2 contain an execution with unnecessary... Moderate Unreviewed

CVE-2024-32853 was published Jul 2, 2024

Hardy Barth cPH2 eCharge Ladestation v1.87.0 and earlier is vulnerable to Execution with... High Unreviewed

CVE-2023-46360 was published Feb 6, 2024

Toshiba printers use SNMP for configuration. Using the private community, it is possible to... Critical Unreviewed

CVE-2024-27143 was published Jun 14, 2024

The Toshiba printers do not implement privileges separation. As for the affected products/models... Moderate Unreviewed

CVE-2024-27146 was published Jun 14, 2024

The Toshiba printers are vulnerable to a Local Privilege Escalation vulnerability. An attacker... High Unreviewed

CVE-2024-27147 was published Jun 14, 2024

IBM WebSphere Application Server 8.5 and 9.0 could allow a remote authenticated attacker, who has... High Unreviewed

CVE-2024-35154 was published Jul 10, 2024

A vulnerability in the CLI of Cisco AsyncOS for Secure Web Appliance could allow an authenticated... High Unreviewed

CVE-2024-20435 was published Jul 17, 2024

Vulnerability in Spotfire Spotfire Analyst, Spotfire Spotfire Server, Spotfire Spotfire for AWS... Critical Unreviewed

CVE-2024-3330 was published Jun 27, 2024

Vulnerability in the Oracle Database RDBMS Security component of Oracle Database Server. ... High Unreviewed

CVE-2024-21184 was published Jul 17, 2024

A vulnerability in APIML Spring Cloud Gateway which leverages user privileges by unexpected... Critical Unreviewed

CVE-2024-6834 was published Jul 17, 2024

A local privilege escalation vulnerability in Ivanti Secure Access Client for Windows allows a... High Unreviewed

CVE-2023-38042 was published May 31, 2024

A vulnerability has been identified in SINEC NMS (All versions < V3.0). The affected application... High Unreviewed

CVE-2024-36398 was published Aug 13, 2024

setuid() does not affect libuv's internal io_uring operations if initialized before the call to... High Unreviewed

CVE-2024-22017 was published Mar 19, 2024

The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.4, macOS... High Unreviewed

CVE-2024-23299 was published Jun 10, 2024

An issue in Canimaan Software LTD ClamXAV v3.1.2 through v3.6.1 and fixed in v.3.6.2 allows a... High Unreviewed

CVE-2024-24245 was published Apr 9, 2024

An issue was discovered in Grandstream GXP14XX 1.0.8.9 and GXP16XX 1.0.7.13, allows remote... High Unreviewed

CVE-2023-50015 was published Mar 9, 2024

A privilege escalation issue existed in FileMaker Server, potentially exposing sensitive... Moderate Unreviewed

CVE-2023-42954 was published Mar 22, 2024

A vulnerability in the software upgrade component of Cisco Application Policy Infrastructure... Moderate Unreviewed

CVE-2024-20478 was published Aug 28, 2024

A vulnerability that allows an attacker in possession of the Veeam ONE Agent service account... Critical Unreviewed

CVE-2024-42024 was published Sep 7, 2024

A vulnerability has been identified in SIMATIC BATCH V9.1 (All versions), SIMATIC Information... Critical Unreviewed

CVE-2024-35783 was published Sep 10, 2024

Execution with unnecessary privileges in PerkinElmer ProcessPlus allows an attacker to spawn a... Critical Unreviewed

CVE-2024-6913 was published Jul 22, 2024

An untrusted search path vulnerability in the AprolConfigureCCServices of B&R APROL <= R 4.2.... High Unreviewed

CVE-2024-5622 was published Aug 29, 2024

Previous 1 2 3 4 5 6 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

147 advisories