GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,536
Composer 4,189
Erlang 31
GitHub Actions 19
Go 1,985
Maven 5,160
npm 3,701
NuGet 657
pip 3,326
Pub 11
RubyGems 882
Rust 836
Swift 35

Unreviewed advisories

All unreviewed 233,527

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

888 advisories

Filter by severity

Sort by

Least recently updated

Input parameter verification vulnerability in the background service module Impact: Successful... Moderate Unreviewed

CVE-2024-51521 was published Nov 5, 2024

Access control vulnerable to user data deletion by anonynmous users Moderate

CVE-2024-51734 was published for AccessControl (pip) Nov 4, 2024

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center ... Moderate Unreviewed

CVE-2024-20374 was published Oct 23, 2024

Dell SupportAssist for Home PCs Installer Executable file version prior to 3.13.2.19 used for... Moderate Unreviewed

CVE-2023-25535 was published Oct 17, 2024

The CloudStack Quota feature allows cloud administrators to implement a quota or usage limit... Moderate Unreviewed

CVE-2024-45461 was published Oct 16, 2024

Improper Privilege Management vulnerability in ZTE ZXR10 1800-2S series ,ZXR10 2800-4,ZXR10 3800... Moderate Unreviewed

CVE-2024-22068 was published Oct 10, 2024

In version v0.3.8 of open-webui, an improper privilege management vulnerability exists in the API... Moderate Unreviewed

CVE-2024-7048 was published Oct 10, 2024

VMware NSX contains a local privilege escalation vulnerability. An authenticated malicious... Moderate Unreviewed

CVE-2024-38818 was published Oct 9, 2024

A privilege escalation (PE) vulnerability in the XML API of Palo Alto Networks PAN-OS software... Moderate Unreviewed

CVE-2024-9471 was published Oct 9, 2024

A security flaw has been discovered in Solvait version 24.4.2 that allows an attacker to elevate... Moderate Unreviewed

CVE-2024-45919 was published Oct 7, 2024

An issue in Shanghai Zhouma Network Technology CO., Ltd IMS Intelligent Manufacturing... Moderate Unreviewed

CVE-2024-44439 was published Oct 4, 2024

Ubiquiti AirMax firmware version firmware version 8 allows attackers with physical access to gain... Moderate Unreviewed

CVE-2024-44540 was published Sep 23, 2024

An improper privilege management vulnerability allowed arbitrary workflows to be committed using... Moderate Unreviewed

CVE-2024-8263 was published Sep 23, 2024

Entrust Instant Financial Issuance (formerly known as Cardwizard) 6.10.0, 6.9.0, 6.9.1, 6.9.2,... Moderate Unreviewed

CVE-2024-39342 was published Sep 23, 2024

Local privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix... Moderate Unreviewed

CVE-2024-7890 was published Sep 12, 2024

Dell PowerScale InsightIQ, version 5.1, contain an Improper Privilege Management vulnerability. A... Moderate Unreviewed

CVE-2024-39574 was published Sep 10, 2024

Improper Privilege Management vulnerability in SAMPA? Holding AKOS allows Collect Data as... Moderate Unreviewed

CVE-2024-4259 was published Sep 3, 2024

Improper Privilege Management vulnerability in Menulux Information Technologies Managment Portal... Moderate Unreviewed

CVE-2024-4428 was published Aug 29, 2024

Kanister vulnerable to cluster-level privilege escalation Moderate

CVE-2024-43403 was published for github.com/kanisterio/kanister (Go) Aug 20, 2024

Microcks's POST /api/import and POST /api/export endpoints allow non-administrator access Moderate

CVE-2024-44076 was published for io.github.microcks:microcks-app (Maven) Aug 19, 2024

Improper privilege management in the installer for Zoom Workplace Desktop App for macOS, Zoom... Moderate Unreviewed

CVE-2024-42440 was published Aug 14, 2024

Improper privilege management in the installer for Zoom Workplace Desktop App for macOS, Zoom... Moderate Unreviewed

CVE-2024-42441 was published Aug 14, 2024

Improper Privilege Management in Sprecher Automation SPRECON-E below version 8.71j allows a... Moderate Unreviewed

CVE-2024-6758 was published Aug 12, 2024

An Improper access control vulnerability was found in Avaya Aura System Manager which could allow... Moderate Unreviewed

CVE-2024-7480 was published Aug 8, 2024

Privilege escalation vulnerability identified in OpenText ArcSight Intelligence. Moderate Unreviewed

CVE-2024-6359 was published Aug 6, 2024

Previous 1 2 3 4 5 … 35 36 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

888 advisories