GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,644
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
3,332 advisories
Filter by severity
Windows Fax and Scan Service Elevation of Privilege Vulnerability.
High
Unreviewed
CVE-2022-24459
was published
Mar 10, 2022
Windows CD-ROM Driver Elevation of Privilege Vulnerability.
High
Unreviewed
CVE-2022-24455
was published
Mar 10, 2022
Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022...
High
Unreviewed
CVE-2022-24469
was published
Mar 10, 2022
Tablet Windows User Interface Application Elevation of Privilege Vulnerability.
High
Unreviewed
CVE-2022-24460
was published
Mar 10, 2022
Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022...
Moderate
Unreviewed
CVE-2022-24518
was published
Mar 10, 2022
Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022...
Moderate
Unreviewed
CVE-2022-24519
was published
Mar 10, 2022
Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022...
Moderate
Unreviewed
CVE-2022-24515
was published
Mar 10, 2022
A local attacker can overwrite arbitrary files on the system with VPN client logs using...
Moderate
Unreviewed
CVE-2021-36809
was published
Mar 9, 2022
A vulnerability has been identified in SINUMERIK MC (All versions < V1.15 SP1), SINUMERIK ONE ...
High
Unreviewed
CVE-2022-24408
was published
Mar 9, 2022
A vulnerability has been identified in SINEC NMS (All versions). The affected software do not...
High
Unreviewed
CVE-2022-25311
was published
Mar 9, 2022
The MasterStudy LMS WordPress plugin before 2.7.6 does to validate some parameters given when...
Critical
Unreviewed
CVE-2022-0441
was published
Mar 8, 2022
The Symantec Management Agent is susceptible to a privilege escalation vulnerability. A low...
High
Unreviewed
CVE-2022-25623
was published
Mar 5, 2022
Printix Secure Cloud Print Management 1.3.1035.0 incorrectly uses Privileged APIs.
Critical
Unreviewed
CVE-2022-25089
was published
Mar 4, 2022
Elasticsearch privilege escalation
Moderate
CVE-2022-23708
was published
for
org.elasticsearch:elasticsearch
(Maven)
Mar 4, 2022
Zoho ManageEngine SharePoint Manager Plus before 4329 is vulnerable to a sensitive data leak that...
Critical
Unreviewed
CVE-2022-24305
was published
Mar 3, 2022
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a local user with elevated privileges to cause a...
Moderate
Unreviewed
CVE-2021-38955
was published
Mar 2, 2022
PCManager versions 11.1.1.95 has a privilege escalation vulnerability. Successful exploit could...
Critical
Unreviewed
CVE-2021-40046
was published
Feb 26, 2022
Exploitation of this vulnerability may result in local privilege escalation and code execution....
High
Unreviewed
CVE-2022-23921
was published
Feb 26, 2022
WatchGuard Firebox and XTM appliances allow a remote attacker with unprivileged credentials to...
High
Unreviewed
CVE-2022-23176
was published
Feb 25, 2022
net/netfilter/nf_dup_netdev.c in the Linux kernel 5.4 through 5.6.10 allows local users to gain...
High
Unreviewed
CVE-2022-25636
was published
Feb 25, 2022
seatd-launch in seatd 0.6.x before 0.6.4 allows removing files with escalated privileges when...
Critical
Unreviewed
CVE-2022-25643
was published
Feb 25, 2022
Pritunl Client through 1.2.3019.52 on Windows allows local privilege escalation, related to an...
High
Unreviewed
CVE-2022-25372
was published
Feb 21, 2022
Improper Privilege Management in Snipe-IT
High
CVE-2022-0611
was published
for
snipe/snipe-it
(Composer)
Feb 17, 2022
Potential security vulnerabilities including compromise of integrity, and allowed communication...
High
Unreviewed
CVE-2020-6922
was published
Feb 17, 2022
A vulnerability in Snow Inventory Java Scanner allows an attacker to run malicious code at a...
High
Unreviewed
CVE-2021-4106
was published
Feb 17, 2022
ProTip!
Advisories are also available from the
GraphQL API