Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,056
Erlang
29
GitHub Actions
19
Go
1,889
Maven
5,000+
npm
3,618
NuGet
638
pip
3,231
Pub
10
RubyGems
854
Rust
817
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,062 advisories

Loading
An issue was discovered in Vaultwarden (formerly Bitwarden_RS) 1.30.3. It lacks an offboarding... High Unreviewed
CVE-2024-39925 was published Sep 13, 2024
An issue was discovered in Vaultwarden (formerly Bitwarden_RS) 1.30.3. A vulnerability has been... High Unreviewed
CVE-2024-39924 was published Sep 13, 2024
Local privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix... Moderate Unreviewed
CVE-2024-7890 was published Sep 12, 2024
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... High Unreviewed
CVE-2023-22099 was published Oct 18, 2023
Vulnerability in the Oracle Solaris product of Oracle Systems (component: Device Driver Interface... High Unreviewed
CVE-2023-22023 was published Jul 18, 2023
An issue found in IXP Data Easy Install v.6.6.14884.0 allows a local attacker to gain privileges... High Unreviewed
CVE-2023-27795 was published Oct 19, 2023
An issue discovered in IXP Data Easy Install v.6.6.14884.0 allows local attackers to gain... High Unreviewed
CVE-2023-27793 was published Oct 19, 2023
A privilege escalation vulnerability exists in the Rockwell Automation affected products. The... High Unreviewed
CVE-2024-8533 was published Sep 12, 2024
The Rockwell Automation affected product contains a vulnerability that allows a threat actor to... High Unreviewed
CVE-2024-7960 was published Sep 12, 2024
A privilege escalation vulnerability exists within the Qumu Multicast Extension v2 before 2.0.63... High Unreviewed
CVE-2023-45883 was published Oct 19, 2023
HP Print and Scan Doctor for Windows may potentially be vulnerable to escalation of privilege. HP... High Unreviewed
CVE-2023-5671 was published Oct 25, 2023
Certain versions of HP PC Hardware Diagnostics Windows are potentially vulnerable to elevation of... High Unreviewed
CVE-2023-5739 was published Oct 31, 2023
The Samsung Universal Print Driver for Windows is potentially vulnerable to escalation of... High Unreviewed
CVE-2024-5760 was published Sep 11, 2024
A vulnerability in the ClearPass OnGuard Linux agent could allow malicious users on a Linux... High Unreviewed
CVE-2023-43506 was published Oct 25, 2023
The leakage of the client secret in TonTon-Tei Line v13.6.1 allows attackers to obtain the... High Unreviewed
CVE-2023-39733 was published Oct 25, 2023
The leakage of the client secret in Onigiriya-musubee Line 13.6.1 allows attackers to obtain the... High Unreviewed
CVE-2023-39740 was published Oct 25, 2023
The leakage of the client secret in VISION MEAT WORKS TrackDiner10/10_mc Line v13.6.1 allows... High Unreviewed
CVE-2023-39734 was published Oct 25, 2023
The leakage of the client secret in Tokueimaru_waiting Line 13.6.1 allows attackers to obtain the... High Unreviewed
CVE-2023-39732 was published Oct 25, 2023
In getConfig of SoftVideoDecoderOMXComponent.cpp, there is a possible out of bounds write due to... High Unreviewed
CVE-2024-40658 was published Sep 11, 2024
In addPreferencesForType of AccountTypePreferenceLoader.java, there is a possible way to disable... High Unreviewed
CVE-2024-40657 was published Sep 11, 2024
CWE-269: Improper Privilege Management vulnerability exists that could cause unauthorized access,... High Unreviewed
CVE-2024-8306 was published Sep 11, 2024
In scheme of Uri.java, there is a possible way to craft a malformed Uri object due to improper... High Unreviewed
CVE-2024-40662 was published Sep 11, 2024
On versions before 2.1.4, after a regular user successfully logs in, they can manually make a... Moderate Unreviewed
CVE-2024-34457 was published Jul 22, 2024
An issue in the component /jeecg-boot/jmreport/dict/list of JimuReport v1.7.8 allows attacker to... Critical Unreviewed
CVE-2024-44893 was published Sep 10, 2024
Windows Installer Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38014 was published Sep 10, 2024
ProTip! Advisories are also available from the GraphQL API