Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+

521 advisories

Loading
Incorrect default permissions in some Intel(R) GPA software installers before version 2023.3 may... High Unreviewed
CVE-2023-24460 was published May 16, 2024
Sourcecodester Human Resource Management System 1.0 is vulnerable to Insecure Permissions... High Unreviewed
CVE-2024-34221 was published May 14, 2024
extcap/nrf_sniffer_ble.py, extcap/nrf_sniffer_ble.sh, extcap/SnifferAPI/*.py in Nordic... High Unreviewed
CVE-2023-46870 was published May 14, 2024
On Windows a directory returned by tempfile.mkdtemp() would not always have permissions set to... High Unreviewed
CVE-2024-4030 was published May 7, 2024
Clario through 2024-04-11 for Desktop has weak permissions for %PROGRAMDATA%\Clario and tries to... High Unreviewed
CVE-2024-34474 was published May 5, 2024
Buildroot before 0b2967e lacks the sticky bit for the /dev/shm directory. High Unreviewed
CVE-2024-34455 was published May 3, 2024
An issue was discovered in Logpoint 7.1 before 7.1.2. The daily executed cron file... High Unreviewed
CVE-2022-48685 was published Apr 28, 2024
Incorrect Default Permissions vulnerability in Metagauss RegistrationMagic allows Accessing... High Unreviewed
CVE-2023-23976 was published Apr 24, 2024
Certain software builds for the TCL 30Z and TCL 10 Android devices contain a vulnerable, pre... High Unreviewed
CVE-2023-38295 was published Apr 22, 2024
An issue was discovered in a third-party component related to ro.boot.wifimacaddr, shipped on... High Unreviewed
CVE-2023-38291 was published Apr 22, 2024
Mautic Sensitive Data Exposure due to inadequate user permission settings High
CVE-2022-25776 was published for mautic/core (Composer) Apr 12, 2024
lenonleite
Insecure Permissions vulnerability in Wondershare Filmora v.13.0.51 allows a local attacker to... High Unreviewed
CVE-2024-26574 was published Apr 8, 2024
Vulnerability of undefined permissions in the Calendar app. Impact: Successful exploitation of... High Unreviewed
CVE-2023-52545 was published Apr 8, 2024
Macro Expert through 4.9.4 allows BUILTIN\Users:(OI)(CI)(M) access to the "%PROGRAMFILES(X86)%... High Unreviewed
CVE-2024-27674 was published Apr 3, 2024
Fortra's Robot Schedule Enterprise Agent for Windows prior to version 3.04 is susceptible to... High Unreviewed
CVE-2024-0259 was published Mar 28, 2024
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... High Unreviewed
CVE-2024-23253 was published Mar 8, 2024
In da, there is a possible permission bypass due to a missing permission check. This could lead... High Unreviewed
CVE-2024-20005 was published Mar 4, 2024
Couchbase Server 7.1.x and 7.2.x before 7.2.4 does not require authentication for the /admin... High Unreviewed
CVE-2023-49338 was published Feb 29, 2024
The TD Bank TD Advanced Dashboard client through 3.0.3 for macOS allows arbitrary code execution... High Unreviewed
CVE-2023-50975 was published Feb 21, 2024
The OpenVPN GUI installer before version 2.6.9 did not set the proper access control restrictions... High Unreviewed
CVE-2023-7235 was published Feb 21, 2024
Incorrect permissions in the installation directories for shared SystemLink Elixir based services... High Unreviewed
CVE-2024-1155 was published Feb 20, 2024
Incorrect directory permissions for the shared NI RabbitMQ service may allow a local... High Unreviewed
CVE-2024-1156 was published Feb 20, 2024
Permission management vulnerability in the lock screen module.Successful exploitation of this... High Unreviewed
CVE-2023-52362 was published Feb 18, 2024
Insecure Permissions issue in Raiden Professional Server RaidenFTPD v.2.4 build 4005 allows a... High Unreviewed
CVE-2023-38960 was published Feb 14, 2024
A vulnerability has been identified in Polarion ALM (All versions). The affected product is... High Unreviewed
CVE-2023-50236 was published Feb 13, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database