Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,049
Erlang
29
GitHub Actions
18
Go
1,871
Maven
5,000+
npm
3,597
NuGet
638
pip
3,198
Pub
10
RubyGems
852
Rust
809
Swift
35
Unreviewed advisories
All unreviewed
5,000+

866 advisories

Improper Privilege Management vulnerability in Menulux Information Technologies Managment Portal... Moderate Unreviewed
CVE-2024-4428 was published Aug 29, 2024
Microcks's POST /api/import and POST /api/export endpoints allow non-administrator access Moderate
CVE-2024-44076 was published for io.github.microcks:microcks-app (Maven) Aug 19, 2024
Improper privilege management in the installer for Zoom Workplace Desktop App for macOS, Zoom... Moderate Unreviewed
CVE-2024-42441 was published Aug 14, 2024
Improper privilege management in the installer for Zoom Workplace Desktop App for macOS, Zoom... Moderate Unreviewed
CVE-2024-42440 was published Aug 14, 2024
Improper Privilege Management in Sprecher Automation SPRECON-E below version 8.71j allows a... Moderate Unreviewed
CVE-2024-6758 was published Aug 12, 2024
An Improper access control vulnerability was found in Avaya Aura System Manager which could allow... Moderate Unreviewed
CVE-2024-7480 was published Aug 8, 2024
Privilege escalation vulnerability identified in OpenText ArcSight Intelligence. Moderate Unreviewed
CVE-2024-6359 was published Aug 6, 2024
Apache Linkis vulnerable to privilege escalation Moderate
CVE-2024-27181 was published for org.apache.linkis:linkis (Maven) Aug 2, 2024
Harbor fails to validate the user permissions when updating project configurations Moderate
CVE-2024-22278 was published for github.com/goharbor/harbor (Go) Jul 31, 2024
An issue was discovered in WithSecure Elements Agent through 23.x for macOS, WithSecure Elements... Moderate Unreviewed
CVE-2024-27357 was published Jul 26, 2024
The Argo CD web terminal session does not handle the revocation of user permissions properly Moderate
CVE-2024-41666 was published for github.com/argoproj/argo-cd/v2 (Go) Jul 24, 2024
ClownandBox crenshaw-dev
pasha-codefresh
The improper privilege management vulnerability in the Zyxel WBE660S firmware version 6.70(ACGG.3... Moderate Unreviewed
CVE-2024-1575 was published Jul 23, 2024
Improper privilege management in Yugabyte Platform allows authenticated admin users to escalate... Moderate Unreviewed
CVE-2024-6908 was published Jul 19, 2024
Dell ECS, versions prior to 3.8.1, contain a privilege elevation vulnerability in user management... Moderate Unreviewed
CVE-2024-30473 was published Jul 18, 2024
Philips Vue PACS does not properly assign, modify, track, or check actor privileges, creating an... Moderate Unreviewed
CVE-2023-40223 was published Jul 18, 2024
An improper privilege management vulnerability allowed users to migrate private repositories... Moderate Unreviewed
CVE-2024-5566 was published Jul 17, 2024
The v6.40 release of Rockwell Automation FactoryTalk® Policy Manager CVE-2021-22681 https://www... Moderate Unreviewed
CVE-2024-6325 was published Jul 16, 2024
Improper privilege management in the installer for some Zoom Workplace Apps and SDKs for Windows... Moderate Unreviewed
CVE-2024-39819 was published Jul 15, 2024
In DevmemIntFreeDefBackingPage of devicemem_server.c, there is a possible arbitrary code... Moderate Unreviewed
CVE-2024-31334 was published Jul 9, 2024
In updateServicesLocked of AccessibilityManagerService.java, there is a possible way for an app... Moderate Unreviewed
CVE-2024-31322 was published Jul 9, 2024
In increment_annotation_count of stats_event.c, there is a possible out of bounds write due to a... Moderate Unreviewed
CVE-2024-31311 was published Jul 9, 2024
Insecure Permissions vulnerability in Micro-Star International Co., Ltd MSI Center v.2.0.36.0... Moderate Unreviewed
CVE-2024-37726 was published Jul 3, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an improper privilege management... Moderate Unreviewed
CVE-2024-37126 was published Jul 2, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an improper privilege management... Moderate Unreviewed
CVE-2024-37133 was published Jul 2, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an improper privilege management... Moderate Unreviewed
CVE-2024-32854 was published Jul 2, 2024
ProTip! Advisories are also available from the GraphQL API