GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,536
Composer 4,189
Erlang 31
GitHub Actions 19
Go 1,985
Maven 5,160
npm 3,701
NuGet 657
pip 3,326
Pub 11
RubyGems 882
Rust 836
Swift 35

Unreviewed advisories

All unreviewed 233,527

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

813 advisories

Filter by severity

Sort by

Least recently updated

Input parameter verification vulnerability in the background service module Impact: Successful... Moderate Unreviewed

CVE-2024-51521 was published Nov 5, 2024

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center ... Moderate Unreviewed

CVE-2024-20374 was published Oct 23, 2024

Dell SupportAssist for Home PCs Installer Executable file version prior to 3.13.2.19 used for... Moderate Unreviewed

CVE-2023-25535 was published Oct 17, 2024

The CloudStack Quota feature allows cloud administrators to implement a quota or usage limit... Moderate Unreviewed

CVE-2024-45461 was published Oct 16, 2024

Improper Privilege Management vulnerability in ZTE ZXR10 1800-2S series ,ZXR10 2800-4,ZXR10 3800... Moderate Unreviewed

CVE-2024-22068 was published Oct 10, 2024

In version v0.3.8 of open-webui, an improper privilege management vulnerability exists in the API... Moderate Unreviewed

CVE-2024-7048 was published Oct 10, 2024

VMware NSX contains a local privilege escalation vulnerability. An authenticated malicious... Moderate Unreviewed

CVE-2024-38818 was published Oct 9, 2024

A privilege escalation (PE) vulnerability in the XML API of Palo Alto Networks PAN-OS software... Moderate Unreviewed

CVE-2024-9471 was published Oct 9, 2024

A security flaw has been discovered in Solvait version 24.4.2 that allows an attacker to elevate... Moderate Unreviewed

CVE-2024-45919 was published Oct 7, 2024

An issue in Shanghai Zhouma Network Technology CO., Ltd IMS Intelligent Manufacturing... Moderate Unreviewed

CVE-2024-44439 was published Oct 4, 2024

Ubiquiti AirMax firmware version firmware version 8 allows attackers with physical access to gain... Moderate Unreviewed

CVE-2024-44540 was published Sep 23, 2024

An improper privilege management vulnerability allowed arbitrary workflows to be committed using... Moderate Unreviewed

CVE-2024-8263 was published Sep 23, 2024

Entrust Instant Financial Issuance (formerly known as Cardwizard) 6.10.0, 6.9.0, 6.9.1, 6.9.2,... Moderate Unreviewed

CVE-2024-39342 was published Sep 23, 2024

Local privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix... Moderate Unreviewed

CVE-2024-7890 was published Sep 12, 2024

Dell PowerScale InsightIQ, version 5.1, contain an Improper Privilege Management vulnerability. A... Moderate Unreviewed

CVE-2024-39574 was published Sep 10, 2024

Improper Privilege Management vulnerability in SAMPA? Holding AKOS allows Collect Data as... Moderate Unreviewed

CVE-2024-4259 was published Sep 3, 2024

Improper Privilege Management vulnerability in Menulux Information Technologies Managment Portal... Moderate Unreviewed

CVE-2024-4428 was published Aug 29, 2024

Improper privilege management in the installer for Zoom Workplace Desktop App for macOS, Zoom... Moderate Unreviewed

CVE-2024-42440 was published Aug 14, 2024

Improper privilege management in the installer for Zoom Workplace Desktop App for macOS, Zoom... Moderate Unreviewed

CVE-2024-42441 was published Aug 14, 2024

Improper Privilege Management in Sprecher Automation SPRECON-E below version 8.71j allows a... Moderate Unreviewed

CVE-2024-6758 was published Aug 12, 2024

An Improper access control vulnerability was found in Avaya Aura System Manager which could allow... Moderate Unreviewed

CVE-2024-7480 was published Aug 8, 2024

Privilege escalation vulnerability identified in OpenText ArcSight Intelligence. Moderate Unreviewed

CVE-2024-6359 was published Aug 6, 2024

An issue was discovered in WithSecure Elements Agent through 23.x for macOS, WithSecure Elements... Moderate Unreviewed

CVE-2024-27357 was published Jul 26, 2024

The improper privilege management vulnerability in the Zyxel WBE660S firmware version 6.70(ACGG.3... Moderate Unreviewed

CVE-2024-1575 was published Jul 23, 2024

On versions before 2.1.4, after a regular user successfully logs in, they can manually make a... Moderate Unreviewed

CVE-2024-34457 was published Jul 22, 2024

Previous 1 2 3 4 5 … 32 33 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

813 advisories