GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
981 advisories
Filter by severity
Local privilege escalation during installation due to improper soft link handling. The following...
High
Unreviewed
CVE-2022-46869
was published
Aug 31, 2023
A vulnerability was found in Performance Co-Pilot (PCP). This flaw can only be exploited if an...
Moderate
Unreviewed
CVE-2024-45770
was published
Sep 19, 2024
Due to incorrect access control, unauthenticated remote attackers can view the /video.mjpg video...
High
Unreviewed
CVE-2018-17559
was published
Oct 27, 2023
Azure Network Watcher VM Agent Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38188
was published
Sep 10, 2024
Azure Network Watcher VM Agent Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-43470
was published
Sep 10, 2024
An issue was discovered in Samsung Magician 8.0.0 on macOS. Because symlinks are used during the...
Moderate
Unreviewed
CVE-2024-31952
was published
May 14, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.1 contains a UNIX symbolic link (symlink)...
Moderate
Unreviewed
CVE-2024-39578
was published
Aug 31, 2024
Ansible Sandbox Escape via Symlink Attack
High
CVE-2015-6240
was published
for
ansible
(pip)
May 13, 2022
Dell Dock Firmware and Dell Client Platform contain an Improper Link Resolution vulnerability...
Moderate
Unreviewed
CVE-2023-43078
was published
Aug 28, 2024
snapd failed to properly check the destination of symbolic links when extracting a snap
Moderate
CVE-2024-29069
was published
for
github.com/snapcore/snapd
(Go)
Jul 25, 2024
VIPRE Advanced Security PMAgent Link Following Local Privilege Escalation Vulnerability. This...
High
Unreviewed
CVE-2024-5928
was published
Aug 21, 2024
Azure Connected Machine Agent Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38098
was published
Aug 13, 2024
Microsoft OfficePlus Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38084
was published
Aug 13, 2024
Microsoft Security Advisory CVE-2024-38081 | .NET Denial of Service Vulnerability
High
CVE-2024-38081
was published
for
Microsoft.IO.Redist
(NuGet)
Jul 9, 2024
Windows Setup Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2021-43237
was published
Dec 16, 2021
An issue was discovered in H2 1.4.197. Insecure handling of permissions in the backup function...
Moderate
Unreviewed
CVE-2018-14335
was published
May 13, 2022
Comodo Internet Security Pro cmdagent Link Following Local Privilege Escalation Vulnerability....
High
Unreviewed
CVE-2024-7250
was published
Jul 30, 2024
Comodo Internet Security Pro cmdagent Link Following Local Privilege Escalation Vulnerability....
High
Unreviewed
CVE-2024-7252
was published
Jul 30, 2024
Comodo Internet Security Pro cmdagent Link Following Local Privilege Escalation Vulnerability....
High
Unreviewed
CVE-2024-7251
was published
Jul 30, 2024
Comodo Firewall Link Following Local Privilege Escalation Vulnerability. This vulnerability...
High
Unreviewed
CVE-2024-7249
was published
Jul 30, 2024
Windows Installer Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2021-41379
was published
May 24, 2022
An elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer...
High
Unreviewed
CVE-2020-0787
was published
May 24, 2022
Azure Network Watcher VM Extension Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-35261
was published
Jul 9, 2024
Microsoft Windows Server Backup Elevation of Privilege Vulnerability
Moderate
Unreviewed
CVE-2024-38013
was published
Jul 9, 2024
ProTip!
Advisories are also available from the
GraphQL API