Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,056
Erlang
29
GitHub Actions
19
Go
1,889
Maven
5,000+
npm
3,618
NuGet
638
pip
3,231
Pub
10
RubyGems
854
Rust
817
Swift
35
Unreviewed advisories
All unreviewed
5,000+

3,288 advisories

Loading
there is a possible permanent DoS or way for the modem to boot unverified firmware due to a logic... Moderate Unreviewed
CVE-2023-48406 was published Dec 8, 2023
A security vulnerability has been identified in EPMM Versions 11.10, 11.9 and 11.8 and older... Critical Unreviewed
CVE-2023-39335 was published Nov 15, 2023
Vulnerability of permissions being not strictly verified in the WMS module. Successful... High Unreviewed
CVE-2023-52107 was published Jan 16, 2024
A plug-in manager origin validation vulnerability in the Trend Micro Apex One security agent... High Unreviewed
CVE-2023-47201 was published Jan 23, 2024
Improper privilege management in Zoom Rooms for macOS before version 5.16.0 may allow an... High Unreviewed
CVE-2023-43591 was published Nov 15, 2023
An exposed dangerous function vulnerability in the Trend Micro Apex One agent could allow a local... High Unreviewed
CVE-2023-52093 was published Jan 23, 2024
An issue in the component IOMap64.sys of ASUSTeK Computer Inc ASUS GPU TweakII v1.4.5.2 allows... High Unreviewed
CVE-2024-33223 was published May 22, 2024
Insecure permissions issue in EaseUS MobiMover 6.0.5 Build 21620 allows attackers to gain... High Unreviewed
CVE-2024-22752 was published Mar 7, 2024
An issue in TeraByte Unlimited Image for Windows v.3.64.0.0 and before and fixed in v.4.0.0.0... High Unreviewed
CVE-2024-31757 was published May 21, 2024
Vulnerability of starting activities in the background in the ActivityManagerService (AMS) module... High Unreviewed
CVE-2023-52716 was published Apr 7, 2024
Improper Privilege Management vulnerability in Menulux Information Technologies Managment Portal... Moderate Unreviewed
CVE-2024-4428 was published Aug 29, 2024
Improper Privilege Management in apache-airflow Moderate
CVE-2021-45230 was published for apache-airflow (pip) Jan 28, 2022
The AppsAnywhere macOS client-privileged helper can be tricked into executing arbitrary commands... High Unreviewed
CVE-2023-41138 was published Nov 9, 2023
Permission control vulnerability in the window management module. Successful exploitation of this... Moderate Unreviewed
CVE-2023-46756 was published Nov 8, 2023
The multi-screen interaction module has a vulnerability in permission management. Successful... High Unreviewed
CVE-2023-46758 was published Nov 8, 2023
Security vulnerability in the face unlock module. Successful exploitation of this vulnerability... High Unreviewed
CVE-2023-46771 was published Nov 8, 2023
Improper Privilege Management vulnerability in SAMPA? Holding AKOS allows Collect Data as... Moderate Unreviewed
CVE-2024-4259 was published Sep 3, 2024
An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Due to improper privilege... High Unreviewed
CVE-2024-45173 was published Sep 5, 2024
The Newsletters plugin for WordPress is vulnerable to privilege escalation in all versions up to,... High Unreviewed
CVE-2024-8247 was published Sep 6, 2024
The WPCOM Member plugin for WordPress is vulnerable to privilege escalation in all versions up to... Critical Unreviewed
CVE-2024-7493 was published Sep 6, 2024
Celery local privilege escalation vulnerability Moderate
CVE-2011-4356 was published for celery (pip) May 17, 2022
In Activity Manager, there is a possible background activity launch due to a logic error in the... High Unreviewed
CVE-2023-21396 was published Oct 30, 2023
In ActivityStarter, there is a possible background activity launch due to an unsafe PendingIntent... High Unreviewed
CVE-2023-21343 was published Oct 30, 2023
In Setup Wizard, there is a possible way to save a WiFi network due to an insecure default value.... High Unreviewed
CVE-2023-21397 was published Oct 30, 2023
In System UI, there is a possible factory reset protection bypass due to a logic error in the... High Unreviewed
CVE-2023-21374 was published Oct 30, 2023
ProTip! Advisories are also available from the GraphQL API