GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,056
Erlang
29
GitHub Actions
19
Go
1,889
Maven
5,000+
npm
3,618
NuGet
638
pip
3,231
Pub
10
RubyGems
854
Rust
817
Swift
35
Unreviewed advisories
All unreviewed
5,000+
3,288 advisories
Filter by severity
Kanister vulnerable to cluster-level privilege escalation
High
CVE-2024-43403
was published
for
github.com/kanisterio/kanister
(Go)
Aug 20, 2024
The DXE module SmmComputrace contains a vulnerability that allows local attackers to leak stack...
High
Unreviewed
CVE-2024-33656
was published
Aug 21, 2024
An issue was discovered in Presta World "Account Manager - Sales Representative & Dealers - CRM" ...
High
Unreviewed
CVE-2024-25842
was published
Mar 3, 2024
In the Windows installer in Atos Eviden CardOS API before 5.5.5.2811, Local Privilege Escalation...
High
Unreviewed
CVE-2023-41099
was published
Mar 22, 2024
An issue in the component Access64.sys of Wistron Corporation TBT Force Power Control v1.0.0.0...
Critical
Unreviewed
CVE-2024-33226
was published
May 22, 2024
An issue in SUPERAntiSyware Professional X 10.0.1262 and 10.0.1264 allows unprivileged attackers...
High
Unreviewed
CVE-2024-27518
was published
Apr 29, 2024
Swissphone DiCal-RED 4009 devices allow a remote attacker to gain access to the administrative...
Critical
Unreviewed
CVE-2024-36439
was published
Aug 22, 2024
An Incorrect Access Control vulnerability was found in /admin/delete_room.php in Kashipara Hotel...
High
Unreviewed
CVE-2024-42774
was published
Aug 22, 2024
Privilege escalation in mk_tsm agent plugin in Checkmk before 2.2.0p17, 2.1.0p37 and 2.0.0p39...
High
Unreviewed
CVE-2023-6735
was published
Jan 12, 2024
Improper Privilege Management vulnerability in Yepas Digital Yepas allows Collect Data as...
High
Unreviewed
CVE-2023-4972
was published
Sep 14, 2023
Improper Privilege Management vulnerability in ExtremePacs Extreme XDS allows Collect Data as...
High
Unreviewed
CVE-2023-6522
was published
Apr 5, 2024
Improper Privilege Management vulnerability in Utarit Information Technologies SoliPay Mobile App...
High
Unreviewed
CVE-2023-4993
was published
Feb 15, 2024
Improper Privilege Management vulnerability in ESKOM Computer e-municipality module allows...
High
Unreviewed
CVE-2023-6150
was published
Nov 28, 2023
Improper Privilege Management vulnerability in ESKOM Computer e-municipality module allows...
High
Unreviewed
CVE-2023-6151
was published
Nov 28, 2023
An issue in MarvinTest Solutions Hardware Access Driver v.5.0.3.0 and before and fixed in v.5.0.4...
High
Unreviewed
CVE-2024-31756
was published
May 21, 2024
Data confidentiality vulnerability in the ScreenReader module. Successful exploitation of this...
High
Unreviewed
CVE-2023-52114
was published
Jan 16, 2024
The nearby module has a privilege escalation vulnerability. Successful exploitation of this...
High
Unreviewed
CVE-2023-52105
was published
Jan 16, 2024
In sanitizeSbn of NotificationManagerService.java, there is a possible way to launch an activity...
High
Unreviewed
CVE-2023-40106
was published
Feb 16, 2024
ykman-gui (aka YubiKey Manager GUI) before 1.2.6 on Windows, when Edge is not used, allows...
High
Unreviewed
CVE-2024-31498
was published
Apr 5, 2024
An issue discovered in N-able N-central before 2023.6 and earlier allows attackers to gain...
Critical
Unreviewed
CVE-2023-47132
was published
Feb 9, 2024
Improper Privilege Management vulnerability in OpenText NetIQ Access Manager allows user account...
High
Unreviewed
CVE-2024-4555
was published
Aug 28, 2024
Incorrect privilege assignment in M-Files Server versions before 22.3.11164.0 and before 22.3...
Moderate
Unreviewed
CVE-2022-1606
was published
Nov 30, 2022
Incorrect Privilege Assignment in M-Files Web (Classic) in M-Files before 22.8.11691.0 allows low...
Moderate
Unreviewed
CVE-2022-4264
was published
Dec 9, 2022
Incorrect privilege assignment issue in M-Files Web in M-Files Web versions before 22.5.11436.1...
Low
Unreviewed
CVE-2022-4270
was published
Dec 2, 2022
An issue was discovered in BeyondTrust Privilege Management for Windows through 5.6. When adding...
High
Unreviewed
CVE-2020-12615
was published
Dec 12, 2023
ProTip!
Advisories are also available from the
GraphQL API