Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,644
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

843 advisories

Loading
An incorrect access control vulnerability in Rubrik CDM versions prior to 9.1.2-p1, 9.0.3-p6 and... High Unreviewed
CVE-2024-36068 was published Aug 27, 2024
Improper access control in Decentralized Identity Services allows an unathenticated attacker to... High Unreviewed
CVE-2024-43477 was published Aug 23, 2024
An Incorrect Access Control vulnerability was found in /admin/rooms.php in Kashipara Hotel... High Unreviewed
CVE-2024-42772 was published Aug 22, 2024
Kashipara Hotel Management System v1.0 is vulnerable to Incorrect Access Control via /admin/users... High Unreviewed
CVE-2024-42776 was published Aug 22, 2024
Swissphone DiCal-RED 4009 devices allow a remote attacker to gain read access to almost the whole... High Unreviewed
CVE-2024-36443 was published Aug 22, 2024
Improper Access Controls allows backend users to overwrite their username when disallowed. High Unreviewed
CVE-2024-27187 was published Aug 20, 2024
Hargal - CWE-284: Improper Access Control High Unreviewed
CVE-2024-42334 was published Aug 20, 2024
Improper access control in some Intel(R) UEFI Integrator Tools on Aptio V for Intel(R) NUC may... High Unreviewed
CVE-2024-26022 was published Aug 14, 2024
improper access control in firmware for some Intel(R) FPGA products before version 24.1 may allow... High Unreviewed
CVE-2024-25576 was published Aug 14, 2024
Windows Update Stack Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38163 was published Aug 14, 2024
Azure CycleCloud Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38195 was published Aug 13, 2024
Azure Connected Machine Agent Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-38162 was published Aug 13, 2024
Insufficient validation of the Input Output Control (IOCTL) input buffer in AMD μProf may allow... High Unreviewed
CVE-2023-31341 was published Aug 13, 2024
A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions ... High Unreviewed
CVE-2024-41905 was published Aug 13, 2024
A vulnerability was found in OpenShift AI that allows for authentication bypass and privilege... High Unreviewed
CVE-2024-7557 was published Aug 12, 2024
Improper access control vulnerability affecting Vonets industrial wifi bridge relays and wifi... High Unreviewed
CVE-2024-29082 was published Aug 12, 2024
Summary Microsoft was notified that an elevation of privilege vulnerability exists in Windows... High Unreviewed
CVE-2024-38202 was published Aug 8, 2024
An Incorrect Access Control vulnerability was found in /smsa/view_subject.php in Kashipara... High Unreviewed
CVE-2024-41249 was published Aug 7, 2024
An issue in the Ping feature of IT Solutions Enjay CRM OS v1.0 allows attackers to escape the... High Unreviewed
CVE-2024-41308 was published Aug 7, 2024
An Incorrect Access Control vulnerability was found in /smsa/add_subject.php and /smsa... High Unreviewed
CVE-2024-41248 was published Aug 7, 2024
An issue in the Hardware info module of IT Solutions Enjay CRM OS v1.0 allows attackers to escape... High Unreviewed
CVE-2024-41309 was published Aug 7, 2024
Incorrect validation of files loaded from a local untrusted directory may allow local privilege... High Unreviewed
CVE-2024-7553 was published Aug 7, 2024
An issue in UAB Lexita PanteraCRM CMS v.401.152 and Patera CRM CMS v.402.072 allows a remote... High Unreviewed
CVE-2024-40531 was published Aug 5, 2024
Memory corruption can occur when arbitrary user-space app gains kernel level privilege to modify... High Unreviewed
CVE-2024-33027 was published Aug 5, 2024
An Incorrect Access Control vulnerability in "/admin/programm/<program_id>/export/statistics" in... High Unreviewed
CVE-2024-41518 was published Aug 2, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database