GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,056
Erlang
29
GitHub Actions
19
Go
1,889
Maven
5,000+
npm
3,618
NuGet
638
pip
3,231
Pub
10
RubyGems
854
Rust
817
Swift
35
Unreviewed advisories
All unreviewed
5,000+
3,288 advisories
Filter by severity
there is a possible permanent DoS or way for the modem to boot unverified firmware due to a logic...
Moderate
Unreviewed
CVE-2023-48406
was published
Dec 8, 2023
A security vulnerability has been identified in EPMM Versions 11.10, 11.9 and 11.8 and older...
Critical
Unreviewed
CVE-2023-39335
was published
Nov 15, 2023
Vulnerability of permissions being not strictly verified in the WMS module. Successful...
High
Unreviewed
CVE-2023-52107
was published
Jan 16, 2024
A plug-in manager origin validation vulnerability in the Trend Micro Apex One security agent...
High
Unreviewed
CVE-2023-47201
was published
Jan 23, 2024
Improper privilege management in Zoom Rooms for macOS before version 5.16.0 may allow an...
High
Unreviewed
CVE-2023-43591
was published
Nov 15, 2023
An exposed dangerous function vulnerability in the Trend Micro Apex One agent could allow a local...
High
Unreviewed
CVE-2023-52093
was published
Jan 23, 2024
An issue in the component IOMap64.sys of ASUSTeK Computer Inc ASUS GPU TweakII v1.4.5.2 allows...
High
Unreviewed
CVE-2024-33223
was published
May 22, 2024
Insecure permissions issue in EaseUS MobiMover 6.0.5 Build 21620 allows attackers to gain...
High
Unreviewed
CVE-2024-22752
was published
Mar 7, 2024
An issue in TeraByte Unlimited Image for Windows v.3.64.0.0 and before and fixed in v.4.0.0.0...
High
Unreviewed
CVE-2024-31757
was published
May 21, 2024
Vulnerability of starting activities in the background in the ActivityManagerService (AMS) module...
High
Unreviewed
CVE-2023-52716
was published
Apr 7, 2024
Improper Privilege Management vulnerability in Menulux Information Technologies Managment Portal...
Moderate
Unreviewed
CVE-2024-4428
was published
Aug 29, 2024
Improper Privilege Management in apache-airflow
Moderate
CVE-2021-45230
was published
for
apache-airflow
(pip)
Jan 28, 2022
The AppsAnywhere macOS client-privileged helper can be tricked into executing arbitrary commands...
High
Unreviewed
CVE-2023-41138
was published
Nov 9, 2023
Permission control vulnerability in the window management module. Successful exploitation of this...
Moderate
Unreviewed
CVE-2023-46756
was published
Nov 8, 2023
The multi-screen interaction module has a vulnerability in permission management. Successful...
High
Unreviewed
CVE-2023-46758
was published
Nov 8, 2023
Security vulnerability in the face unlock module. Successful exploitation of this vulnerability...
High
Unreviewed
CVE-2023-46771
was published
Nov 8, 2023
Improper Privilege Management vulnerability in SAMPA? Holding AKOS allows Collect Data as...
Moderate
Unreviewed
CVE-2024-4259
was published
Sep 3, 2024
An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Due to improper privilege...
High
Unreviewed
CVE-2024-45173
was published
Sep 5, 2024
The Newsletters plugin for WordPress is vulnerable to privilege escalation in all versions up to,...
High
Unreviewed
CVE-2024-8247
was published
Sep 6, 2024
The WPCOM Member plugin for WordPress is vulnerable to privilege escalation in all versions up to...
Critical
Unreviewed
CVE-2024-7493
was published
Sep 6, 2024
Celery local privilege escalation vulnerability
Moderate
CVE-2011-4356
was published
for
celery
(pip)
May 17, 2022
In Activity Manager, there is a possible background activity launch due to a logic error in the...
High
Unreviewed
CVE-2023-21396
was published
Oct 30, 2023
In ActivityStarter, there is a possible background activity launch due to an unsafe PendingIntent...
High
Unreviewed
CVE-2023-21343
was published
Oct 30, 2023
In Setup Wizard, there is a possible way to save a WiFi network due to an insecure default value....
High
Unreviewed
CVE-2023-21397
was published
Oct 30, 2023
In System UI, there is a possible factory reset protection bypass due to a logic error in the...
High
Unreviewed
CVE-2023-21374
was published
Oct 30, 2023
ProTip!
Advisories are also available from the
GraphQL API