Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,090
Erlang
29
GitHub Actions
19
Go
1,915
Maven
5,000+
npm
3,646
NuGet
638
pip
3,262
Pub
10
RubyGems
870
Rust
821
Swift
35
Unreviewed advisories
All unreviewed
5,000+

876 advisories

Loading
By default, SANnav OVA is shipped with root user login enabled. While protected by a password,... Moderate Unreviewed
CVE-2024-2859 was published Apr 27, 2024
Neo4j Cypher component mishandles IMMUTABLE privileges Moderate
CVE-2024-34517 was published for org.neo4j:neo4j-cypher (Maven) May 7, 2024
irene221b
The improper privilege management vulnerability in the Zyxel WBE660S firmware version 6.70(ACGG.3... Moderate Unreviewed
CVE-2024-1575 was published Jul 23, 2024
Dell ECS, versions prior to 3.8.1, contain a privilege elevation vulnerability in user management... Moderate Unreviewed
CVE-2024-30473 was published Jul 18, 2024
The Slider and Carousel slider by Depicter plugin for WordPress is vulnerable to Arbitrary Nonce... Moderate Unreviewed
CVE-2024-4390 was published Jun 20, 2024
An improper privilege management vulnerability allowed users to migrate private repositories... Moderate Unreviewed
CVE-2024-5566 was published Jul 17, 2024
Improper privilege management in the installer for some Zoom Workplace Apps and SDKs for Windows... Moderate Unreviewed
CVE-2024-39819 was published Jul 15, 2024
In increment_annotation_count of stats_event.c, there is a possible out of bounds write due to a... Moderate Unreviewed
CVE-2024-31311 was published Jul 9, 2024
In DevmemIntFreeDefBackingPage of devicemem_server.c, there is a possible arbitrary code... Moderate Unreviewed
CVE-2024-31334 was published Jul 9, 2024
In updateServicesLocked of AccessibilityManagerService.java, there is a possible way for an app... Moderate Unreviewed
CVE-2024-31322 was published Jul 9, 2024
Reportico Web fails to invalidate cookies upon logout Moderate
CVE-2024-31556 was published for reportico-web/reportico (Composer) May 14, 2024
Jenkins Git server Plugin does not perform a permission check Moderate
CVE-2024-34146 was published for org.jenkins-ci.plugins:git-server (Maven) May 2, 2024
Ariane Allegro Scenario Player through 2024-03-05, when Ariane Duo kiosk mode is used, allows... Moderate Unreviewed
CVE-2024-37364 was published Jun 6, 2024
Uncontrolled search path for some Intel(R) CST software before version 2.1.10300 may allow an... Moderate Unreviewed
CVE-2023-40155 was published May 16, 2024
Uncontrolled search path element in some Intel(R) VTune(TM) Profiler software before version 2024... Moderate Unreviewed
CVE-2023-45320 was published May 16, 2024
An issue was discovered in Samsung Magician 8.0.0 on macOS. Because it is possible to tamper with... Moderate Unreviewed
CVE-2024-31953 was published May 14, 2024
In atf spm, there is a possible way to remap physical memory to virtual memory due to a logic... Moderate Unreviewed
CVE-2024-20021 was published May 6, 2024
An issue in spidernet-io spiderpool v.0.9.3 and before allows a local attacker to execute... Moderate Unreviewed
CVE-2024-33393 was published May 1, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an improper privilege management... Moderate Unreviewed
CVE-2024-37133 was published Jul 2, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an improper privilege management... Moderate Unreviewed
CVE-2024-32854 was published Jul 2, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an improper privilege management... Moderate Unreviewed
CVE-2024-37126 was published Jul 2, 2024
Vulnerability of unauthorized screenshot capturing in the WMS module Impact: Successful... Moderate Unreviewed
CVE-2024-36499 was published Jun 14, 2024
An improper privilege management vulnerability exists in Tenable Security Center where an... Moderate Unreviewed
CVE-2024-5759 was published Jun 12, 2024
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability Moderate Unreviewed
CVE-2024-26247 was published Mar 23, 2024
A vulnerability has been identified in Mendix Applications using Mendix 10 (All versions < V10.11... Moderate Unreviewed
CVE-2024-33500 was published Jun 11, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database