GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,056
Erlang
29
GitHub Actions
19
Go
1,889
Maven
5,000+
npm
3,618
NuGet
638
pip
3,231
Pub
10
RubyGems
854
Rust
817
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
3,062 advisories
Filter by severity
An issue was discovered in Vaultwarden (formerly Bitwarden_RS) 1.30.3. It lacks an offboarding...
High
Unreviewed
CVE-2024-39925
was published
Sep 13, 2024
An issue was discovered in Vaultwarden (formerly Bitwarden_RS) 1.30.3. A vulnerability has been...
High
Unreviewed
CVE-2024-39924
was published
Sep 13, 2024
Local privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix...
Moderate
Unreviewed
CVE-2024-7890
was published
Sep 12, 2024
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ...
High
Unreviewed
CVE-2023-22099
was published
Oct 18, 2023
Vulnerability in the Oracle Solaris product of Oracle Systems (component: Device Driver Interface...
High
Unreviewed
CVE-2023-22023
was published
Jul 18, 2023
An issue found in IXP Data Easy Install v.6.6.14884.0 allows a local attacker to gain privileges...
High
Unreviewed
CVE-2023-27795
was published
Oct 19, 2023
An issue discovered in IXP Data Easy Install v.6.6.14884.0 allows local attackers to gain...
High
Unreviewed
CVE-2023-27793
was published
Oct 19, 2023
A privilege escalation vulnerability exists in the Rockwell Automation affected products. The...
High
Unreviewed
CVE-2024-8533
was published
Sep 12, 2024
The Rockwell Automation affected product contains a vulnerability that allows a threat actor to...
High
Unreviewed
CVE-2024-7960
was published
Sep 12, 2024
A privilege escalation vulnerability exists within the Qumu Multicast Extension v2 before 2.0.63...
High
Unreviewed
CVE-2023-45883
was published
Oct 19, 2023
HP Print and Scan Doctor for Windows may potentially be vulnerable to escalation of privilege. HP...
High
Unreviewed
CVE-2023-5671
was published
Oct 25, 2023
Certain versions of HP PC Hardware Diagnostics Windows are potentially vulnerable to elevation of...
High
Unreviewed
CVE-2023-5739
was published
Oct 31, 2023
The Samsung Universal Print Driver for Windows is potentially vulnerable to escalation of...
High
Unreviewed
CVE-2024-5760
was published
Sep 11, 2024
A vulnerability in the ClearPass OnGuard Linux agent could allow malicious users on a Linux...
High
Unreviewed
CVE-2023-43506
was published
Oct 25, 2023
The leakage of the client secret in TonTon-Tei Line v13.6.1 allows attackers to obtain the...
High
Unreviewed
CVE-2023-39733
was published
Oct 25, 2023
The leakage of the client secret in Onigiriya-musubee Line 13.6.1 allows attackers to obtain the...
High
Unreviewed
CVE-2023-39740
was published
Oct 25, 2023
The leakage of the client secret in VISION MEAT WORKS TrackDiner10/10_mc Line v13.6.1 allows...
High
Unreviewed
CVE-2023-39734
was published
Oct 25, 2023
The leakage of the client secret in Tokueimaru_waiting Line 13.6.1 allows attackers to obtain the...
High
Unreviewed
CVE-2023-39732
was published
Oct 25, 2023
In getConfig of SoftVideoDecoderOMXComponent.cpp, there is a possible out of bounds write due to...
High
Unreviewed
CVE-2024-40658
was published
Sep 11, 2024
In addPreferencesForType of AccountTypePreferenceLoader.java, there is a possible way to disable...
High
Unreviewed
CVE-2024-40657
was published
Sep 11, 2024
CWE-269: Improper Privilege Management vulnerability exists that could cause unauthorized
access,...
High
Unreviewed
CVE-2024-8306
was published
Sep 11, 2024
In scheme of Uri.java, there is a possible way to craft a malformed Uri object due to improper...
High
Unreviewed
CVE-2024-40662
was published
Sep 11, 2024
On versions before 2.1.4, after a regular user successfully logs in, they can manually make a...
Moderate
Unreviewed
CVE-2024-34457
was published
Jul 22, 2024
An issue in the component /jeecg-boot/jmreport/dict/list of JimuReport v1.7.8 allows attacker to...
Critical
Unreviewed
CVE-2024-44893
was published
Sep 10, 2024
Windows Installer Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38014
was published
Sep 10, 2024
ProTip!
Advisories are also available from the
GraphQL API