GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,090
Erlang
29
GitHub Actions
19
Go
1,915
Maven
5,000+
npm
3,646
NuGet
638
pip
3,262
Pub
10
RubyGems
870
Rust
821
Swift
35
Unreviewed advisories
All unreviewed
5,000+
876 advisories
Filter by severity
By default, SANnav OVA is shipped with root user login enabled. While protected by a password,...
Moderate
Unreviewed
CVE-2024-2859
was published
Apr 27, 2024
Neo4j Cypher component mishandles IMMUTABLE privileges
Moderate
CVE-2024-34517
was published
for
org.neo4j:neo4j-cypher
(Maven)
May 7, 2024
The improper privilege management vulnerability in the Zyxel WBE660S firmware version 6.70(ACGG.3...
Moderate
Unreviewed
CVE-2024-1575
was published
Jul 23, 2024
Dell ECS, versions prior to 3.8.1, contain a privilege elevation vulnerability in user management...
Moderate
Unreviewed
CVE-2024-30473
was published
Jul 18, 2024
The Slider and Carousel slider by Depicter plugin for WordPress is vulnerable to Arbitrary Nonce...
Moderate
Unreviewed
CVE-2024-4390
was published
Jun 20, 2024
An improper privilege management vulnerability allowed users to migrate private repositories...
Moderate
Unreviewed
CVE-2024-5566
was published
Jul 17, 2024
Improper privilege management in the installer for some Zoom Workplace Apps and SDKs for Windows...
Moderate
Unreviewed
CVE-2024-39819
was published
Jul 15, 2024
In increment_annotation_count of stats_event.c, there is a possible out of bounds write due to a...
Moderate
Unreviewed
CVE-2024-31311
was published
Jul 9, 2024
In DevmemIntFreeDefBackingPage of devicemem_server.c, there is a possible arbitrary code...
Moderate
Unreviewed
CVE-2024-31334
was published
Jul 9, 2024
In updateServicesLocked of AccessibilityManagerService.java, there is a possible way for an app...
Moderate
Unreviewed
CVE-2024-31322
was published
Jul 9, 2024
Reportico Web fails to invalidate cookies upon logout
Moderate
CVE-2024-31556
was published
for
reportico-web/reportico
(Composer)
May 14, 2024
Jenkins Git server Plugin does not perform a permission check
Moderate
CVE-2024-34146
was published
for
org.jenkins-ci.plugins:git-server
(Maven)
May 2, 2024
Ariane Allegro Scenario Player through 2024-03-05, when Ariane Duo kiosk mode is used, allows...
Moderate
Unreviewed
CVE-2024-37364
was published
Jun 6, 2024
Uncontrolled search path for some Intel(R) CST software before version 2.1.10300 may allow an...
Moderate
Unreviewed
CVE-2023-40155
was published
May 16, 2024
Uncontrolled search path element in some Intel(R) VTune(TM) Profiler software before version 2024...
Moderate
Unreviewed
CVE-2023-45320
was published
May 16, 2024
An issue was discovered in Samsung Magician 8.0.0 on macOS. Because it is possible to tamper with...
Moderate
Unreviewed
CVE-2024-31953
was published
May 14, 2024
In atf spm, there is a possible way to remap physical memory to virtual memory due to a logic...
Moderate
Unreviewed
CVE-2024-20021
was published
May 6, 2024
An issue in spidernet-io spiderpool v.0.9.3 and before allows a local attacker to execute...
Moderate
Unreviewed
CVE-2024-33393
was published
May 1, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an improper privilege management...
Moderate
Unreviewed
CVE-2024-37133
was published
Jul 2, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an improper privilege management...
Moderate
Unreviewed
CVE-2024-32854
was published
Jul 2, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an improper privilege management...
Moderate
Unreviewed
CVE-2024-37126
was published
Jul 2, 2024
Vulnerability of unauthorized screenshot capturing in the WMS module
Impact: Successful...
Moderate
Unreviewed
CVE-2024-36499
was published
Jun 14, 2024
An improper privilege management vulnerability exists in Tenable Security Center where an...
Moderate
Unreviewed
CVE-2024-5759
was published
Jun 12, 2024
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
Moderate
Unreviewed
CVE-2024-26247
was published
Mar 23, 2024
A vulnerability has been identified in Mendix Applications using Mendix 10 (All versions < V10.11...
Moderate
Unreviewed
CVE-2024-33500
was published
Jun 11, 2024
ProTip!
Advisories are also available from the
GraphQL API